CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CNNVD•added 2026/02/06 12:0 a.m.•2 views

StackIdeas EasyDiscuss 信息泄露漏洞

StackIdeas EasyDiscuss is an extension of the StackIdeas company. StackIdeas EasyDiscuss has a vulnerability related to information leakage. This vulnerability arises from the fact that the access control settings for custom forum post fields are not applied to JSON output types, which may lead t...

9.2CVSS5.8AI score0.00016EPSS

Exploits0References1

Positive Technologies•added 2026/02/06 12:0 a.m.•2 views

PT-2026-6689

Name of the Vulnerable Software and Affected Versions EasyDiscuss affected versions not specified Description Access control settings for forum post custom fields are not enforced when data is output in JSON format. This results in an Access Control List ACL bypass, potentially leading to...

9.2CVSS5.4AI score0.00016EPSS

Exploits0References6

EUVD•added 2025/12/12 12:30 a.m.•1 views

EUVD-2024-55340

Flatboard 3.2 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts in forum information fields. Attackers can insert JavaScript payloads that execute when other users view the forum, potentially stealing session cookies and...

5.3CVSS5.3AI score0.0006EPSS

Exploits0References5

NVD•added 2025/12/11 10:15 p.m.•1 views

CVE-2024-58291

5.3CVSS0.0006EPSS

Exploits0References4

Cvelist•added 2025/12/11 9:35 p.m.•17 views

CVE-2024-58291 Flatboard 3.2 Authenticated Stored Cross-Site Scripting via Forum Information Field

5.3CVSS0.0006EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2015-4562

Malware in sbrugna...

6.5CVSS6.4AI score0.00137EPSS

Exploits0References4

Prion•added 2015/09/26 1:59 a.m.•11 views

Design/Logic Flaw

EMC RSA Archer GRC 5.x before 5.5.3 allows remote authenticated users to bypass intended access restrictions, and read or modify Discussion Forum Fields messages, via unspecified vectors...

6.5CVSS6.6AI score0.00137EPSS

Exploits0References3Affected Software1

Cvelist•added 2015/09/25 1:0 a.m.•13 views

CVE-2015-4542

EMC RSA Archer GRC 5.x before 5.5.3 allows remote authenticated users to bypass intended access restrictions, and read or modify Discussion Forum Fields messages, via unspecified vectors...

6.2AI score0.00137EPSS

Exploits0References3

NVD•added 2005/05/03 4:0 a.m.•9 views

CVE-2005-1440

Multiple cross-site scripting XSS vulnerabilities in ViArt Shop Enterprise 2.1.6 allow remote attackers to inject arbitrary web script or HTML via 1 various parameters to basket.php, 2 the nickname, email, topic, and message fields in forum.php, as demonstrated using forumnewthread.php and...

6.8CVSS5.8AI score0.02744EPSS

Exploits1References12

NVD•added 2005/05/02 4:0 a.m.•9 views

CVE-2005-0650

Multiple cross-site scripting XSS vulnerabilities in ProjectBB 0.4.5.1 allow remote attackers to inject arbitrary web script or HTML via 1 the pages parameter to divers.php incorrectly referred to as "drivers.php" by some sources, 2 in the search feature text area, 3 forum name, 4 site name or 5...

4.3CVSS5.7AI score0.00674EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by