Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2010-4954

Malware in sbrugna...

7.5CVSS6.4AI score0.00131EPSS
Exploits1References5
OSV
OSVadded 2025/09/14 5:15 a.m.2 views

CVE-2025-10390

A weakness has been identified in CRMEB up to 5.6.1. The affected element is the function editAddress of the file app/services/user/UserAddressServices.php. Executing manipulation of the argument ID can lead to improper authorization. The attack may be launched remotely. The exploit has been made...

8.8CVSS6.7AI score
Exploits0References4
CVE
CVEadded 2025/09/14 4:32 a.m.10 views

CVE-2025-10390

CVE-2025-10390 affects CRMEB up to 5.6.1, with the vulnerability located in the editAddress function of app/services/user/UserAddressServices.php. Manipulating the ID parameter can lead to improper authorization, and the issue may be exploitable remotely. Public exploit availability is noted; mul...

8.8CVSS6.3AI score0.00189EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologiesadded 2025/09/14 12:0 a.m.3 views

PT-2025-37400

Name of the Vulnerable Software and Affected Versions: CRMEB versions prior to 5.6.2 Description: A weakness exists in CRMEB due to improper authorization. The issue is located in the editAddress function of the app/services/user/UserAddressServices.php file. Manipulation of the ID argument can...

5.5CVSS5.3AI score0.00189EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-3298

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit...

5.4CVSS5.7AI score0.00218EPSS
Exploits2References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:39 a.m.3 views

SUSE CVE-2013-1871

Cross-site scripting XSS vulnerability in account/EditAddress.do in Spacewalk and Red Hat Network RHN Satellite 5.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter...

3.5CVSS6.1AI score0.00287EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2014/02/10 5:29 p.m.1 views

Satellite/Spacewalk: XSS in EditAddress page

Cross-site scripting XSS vulnerability in account/EditAddress.do in Spacewalk and Red Hat Network RHN Satellite 5.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter...

3.5CVSS5.9AI score0.00287EPSS
Exploits0References4
Prion
Prionadded 2011/11/01 10:55 p.m.12 views

Sql injection

SQL injection vulnerability in the Front-edit Address Book comaddressbook component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a contact action to index.php...

7.5CVSS9.1AI score0.00131EPSS
Exploits1References4
Rows per page
Query Builder