CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-1779

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00324EPSS

Exploits0References7

RedhatCVE•added 2025/05/23 3:59 a.m.•6 views

CVE-2023-35783

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS5.9AI score0.00324EPSS

Exploits0References1

Veracode•added 2023/06/26 9:3 a.m.•14 views

Cross-Site Scripting (XSS)

tpwd/kesearch is vulnerable to Cross-Site Scripting XSS attacks. The library does not properly validate user input before it output to the front end, allowing an attacker to inject and execute malicious javascript on victim's browser via indexed data...

6.3CVSS6.1AI score0.00324EPSS

Exploits0References6Affected Software1

Github Security Blog•added 2023/06/16 3:30 p.m.•18 views

ke_search (aka Faceted Search) vulnerable to Cross-Site Scripting

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS6.3AI score0.00324EPSS

Exploits0References7Affected Software1

OSV•added 2023/06/16 3:30 p.m.•19 views

GHSA-F4M6-X2XJ-JC7W ke_search (aka Faceted Search) vulnerable to Cross-Site Scripting

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS6AI score0.00324EPSS

Exploits0References7

NVD•added 2023/06/16 3:15 p.m.•7 views

CVE-2023-35783

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS6.1AI score0.00324EPSS

Exploits0References1

ATTACKERKB•added 2023/06/16 3:15 p.m.•0 views

CVE-2023-35783

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS5.2AI score0.00324EPSS

Exploits0References2

OSV•added 2023/06/16 3:15 p.m.•0 views

CVE-2023-35783

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.1CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2023/06/16 12:0 a.m.•9 views

CVE-2023-35783

The kesearch aka Faceted Search extension before 4.0.3, 4.1.x through 4.6.x before 4.6.6, and 5.x before 5.0.2 for TYPO3 allows XSS via indexed data...

6.3CVSS5.9AI score0.00324EPSS

Exploits0References1

CVE•added 2023/06/16 12:0 a.m.•45 views

CVE-2023-35783

The CVE-2023-35783 vulnerability concerns the TYPO3 ke_search (Faceted Search) extension. Multiple connected sources confirm an XSS flaw via indexed data in ke_search versions prior to 4.0.3; 4.1.x through 4.6.x prior to 4.6.6; and 5.x prior to 5.0.2. Impact is cross-site scripting via the extens...

6.3CVSS5.9AI score0.00324EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by