CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-12809

Malware in sbrugna...

6.1CVSS6.2AI score0.01511EPSS

Exploits0References4

Prion•added 2021/11/16 10:15 a.m.•13 views

Cross site scripting

In Factor App Framework & Headless CMS v1.0.4 to v1.8.30, improperly invalidate a user’s session even after the user logs out of the application. In addition, user sessions are stored in the browser’s local storage, which by default does not have an expiration time. This makes it possible for an...

7.5CVSS8.6AI score0.00169EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/11/16 9:45 a.m.•12 views

CVE-2021-25984 FactorJS - Stored Cross-Site Scripting (XSS) in Post Reply Functionality

In Factor App Framework & Headless CMS forum plugin, versions v1.3.3 to v1.8.30, are vulnerable to stored Cross-Site Scripting XSS at the “post reply” section. An unauthenticated attacker can execute malicious JavaScript code and steal the session cookies...

6.1CVSS6.2AI score0.01511EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by