CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in the search functionality in Intrexx before 9.4.0 allows remote attackers to inject arbitrary web script or HTML via the request parameter...

6.1CVSS6AI score0.00249EPSS

Exploits0

RedhatCVE•added 2025/05/04 12:6 a.m.•29 views

CVE-2025-47201

In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS...

5.4CVSS7.1AI score0.003EPSS

Exploits0References1

NVD•added 2025/05/02 6:15 a.m.•12 views

CVE-2025-47201

In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS...

5.4CVSS0.003EPSS

Exploits0References1

OSV•added 2025/05/02 6:15 a.m.•3 views

CVE-2025-47201

In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS...

5.4CVSS6AI score0.003EPSS

Exploits0References1

Vulnrichment•added 2025/05/02 12:0 a.m.•9 views

CVE-2025-47201

In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS...

4.4CVSS7.1AI score0.003EPSS

Exploits0References1

Positive Technologies•added 2025/05/02 12:0 a.m.•8 views

PT-2025-18760 · United Planet · Intrexx Portal Server

Name of the Vulnerable Software and Affected Versions: Intrexx Portal Server versions prior to 12.0.4 Description: The issue allows for the execution of unrequested JavaScript code in HTML, also known as Cross-Site Scripting XSS. This occurs due to susceptible Velocity-Scripts in the affected...

5.4CVSS6.2AI score0.003EPSS

Exploits0References5

CVE•added 2025/05/02 12:0 a.m.•61 views

CVE-2025-47201

CVE-2025-47201 affects Intrexx Portal Server prior to 12.0.4. The issue stems from multiple Velocity-Scripts that may execute unrequested JavaScript in HTML, enabling a cross-site scripting (XSS) condition. Exploitation details are not provided in the documents. Remediation: update to version 12....

5.4CVSS7.2AI score0.003EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/05/02 12:0 a.m.•2 views

Intrexx Portal Server 安全漏洞

Intrexx Portal Server is a cross-platform development environment from Intrexx Corporation. A security vulnerability exists in Intrexx Portal Server versions prior to 12.0.4 that stems from multiple Velocity-Scripts that may execute unsolicited JavaScript code, potentially leading to a cross-site...

5.4CVSS6.2AI score0.003EPSS

Exploits0References2

Cvelist•added 2025/05/02 12:0 a.m.•17 views

CVE-2025-47201

In Intrexx Portal Server before 12.0.4, multiple Velocity-Scripts are susceptible to the execution of unrequested JavaScript code in HTML, aka XSS...

4.4CVSS0.003EPSS

Exploits0References1

RedhatCVE•added 2025/03/21 12:22 a.m.•11 views

CVE-2025-30092

Intrexx Portal Server 12.x = 12.0.2 and 11.x = 11.9.2 allows XSS in multiple Velocity scripts...

6.1CVSS6.1AI score0.00187EPSS

Exploits0References1

RedhatCVE•added 2025/03/21 12:19 a.m.•14 views

CVE-2025-26816

A vulnerability in Intrexx Portal Server 12.0.2 and earlier which was classified as problematic potentially allows users with particular permissions under certain conditions to see potentially sensitive data from a different user context...

6.5CVSS6.7AI score0.00151EPSS

Exploits0References1

NVD•added 2025/03/19 9:15 p.m.•13 views

CVE-2025-30092

Intrexx Portal Server 12.x = 12.0.2 and 11.x = 11.9.2 allows XSS in multiple Velocity scripts...

6.1CVSS0.00187EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by