CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

5 matches found

Veracode•added 2017/07/26 2:42 a.m.•13 views

Cross-site Scripting (XSS)

symphonycms/symphony-2 is vulnerable to cross-site scripting XSS attacks. A flaw in the template/usererror.missingextension.php allows attackers to inject script through the existing-folder parameter...

6.1CVSS5.7AI score0.00271EPSS

Exploits0References3Affected Software1

NVD•added 2017/01/20 8:59 a.m.•10 views

CVE-2017-5542

Cross-site scripting XSS vulnerability in template/usererror.missingextension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter...

6.1CVSS6.1AI score0.00271EPSS

Exploits0References3

OSV•added 2017/01/20 8:59 a.m.•11 views

CVE-2017-5542

Cross-site scripting XSS vulnerability in template/usererror.missingextension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter...

6.1CVSS5.9AI score

Exploits0References3

Prion•added 2017/01/20 8:59 a.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in template/usererror.missingextension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter...

4.3CVSS6AI score0.00271EPSS

Exploits0References3Affected Software1

Cvelist•added 2017/01/20 8:39 a.m.•12 views

CVE-2017-5542

Cross-site scripting XSS vulnerability in template/usererror.missingextension.php in Symphony CMS before 2.6.10 allows remote attackers to inject arbitrary web script or HTML via the existing-folder parameter...

6.1AI score0.00271EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by