Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Positive Technologies
Positive Technologiesadded 2026/02/19 12:0 a.m.4 views

PT-2026-20577

Name of the Vulnerable Software and Affected Versions ACF Photo Gallery Field versions prior to 3.1 Description The ACF Photo Gallery Field plugin for WordPress has a flaw that allows unauthorized modification of data. This is due to a missing capability check within the acf photo gallery edit sa...

4.3CVSS5.2AI score0.00267EPSS
Exploits0References7
OSV
OSVadded 2025/11/09 11:15 p.m.2 views

CVE-2025-12920

A flaw has been found in qianfox FoxCMS up to 1.2.16. Affected by this vulnerability is the function add/edit of the file app/admin/controller/Product.php. This manipulation of the argument Title causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

4.8CVSS4.2AI score
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/08/30 6:21 p.m.4 views

CVE-2025-9434

A vulnerability was determined in 1000projects Online Project Report Submission and Evaluation System 1.0. This affects an unknown function of the file /admin/edittitle.php?id=1. Executing manipulation of the argument desc can lead to cross site scripting. The attack may be launched remotely. The...

6.1CVSS4AI score0.00337EPSS
Exploits1References1
OSV
OSVadded 2025/08/26 2:15 a.m.1 views

CVE-2025-9434

A vulnerability was determined in 1000projects Online Project Report Submission and Evaluation System 1.0. This affects an unknown function of the file /admin/edittitle.php?id=1. Executing manipulation of the argument desc can lead to cross site scripting. The attack may be launched remotely. The...

6.1CVSS4.1AI score0.00337EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/08/26 1:2 a.m.9 views

CVE-2025-9434 1000projects Online Project Report Submission and Evaluation System edit_title.php cross site scripting

A vulnerability was determined in 1000projects Online Project Report Submission and Evaluation System 1.0. This affects an unknown function of the file /admin/edittitle.php?id=1. Executing manipulation of the argument desc can lead to cross site scripting. The attack may be launched remotely. The...

5.3CVSS0.00337EPSS
Exploits1References4
CVE
CVEadded 2025/08/26 1:2 a.m.18 views

CVE-2025-9434

The CVE-2025-9434 issue affects 1000projects Online Project Report Submission and Evaluation System 1.0. A cross-site scripting vulnerability exists in the file path /admin/edit_title.php?id=1 when the desc parameter is manipulated. The vulnerability can be exploited remotely, and public disclosu...

6.1CVSS6.5AI score0.00337EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2025/08/26 12:0 a.m.3 views

1000 Projects Online Project Report Submission and Evaluation System Security Vulnerability

1000 Projects Online Project Report Submission and Evaluation System is a 1000 Projects open source online project report submission and evaluation system . 1000 Projects Online Project Report Submission and Evaluation System version 1.0 has a security vulnerability , the vulnerability stems from...

6.1CVSS5.5AI score0.00337EPSS
Exploits1References5
NVD
NVDadded 2010/01/21 10:30 p.m.15 views

CVE-2010-0370

Cross-site scripting XSS vulnerability in the Node Blocks module 5.x-1.1 and earlier, and 6.x-1.3 and earlier, a module for Drupal, allows remote authenticated users, with permissions to create or edit content and administer blocks, to inject arbitrary web script or HTML via the edit-title...

3.5CVSS5.4AI score0.01231EPSS
Exploits1References9
Rows per page
Query Builder