CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-30373

Malicious code in bioql PyPI...

10CVSS7AI score0.02989EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-30374

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00296EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 9:35 p.m.•5 views

CVE-2021-43441

An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form...

5.3CVSS7.4AI score0.00296EPSS

Exploits0

OSV•added 2021/12/20 8:15 p.m.•2 views

CVE-2021-43441

An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form...

5.3CVSS6.2AI score0.00296EPSS

Exploits0References2

OSV•added 2021/12/20 8:15 p.m.•1 views

CVE-2021-43440

Multiple Stored XSS Vulnerabilities in the Source Code of iOrder 1.0 allow remote attackers to execute arbitrary code via signup form in the Name and Phone number field...

6.1CVSS6.1AI score0.02989EPSS

Exploits0References2

NVD•added 2021/12/20 8:15 p.m.•10 views

CVE-2021-43440

Multiple Stored XSS Vulnerabilities in the Source Code of iOrder 1.0 allow remote attackers to execute arbitrary code via signup form in the Name and Phone number field...

6.1CVSS0.00547EPSS

Exploits0References2

NVD•added 2021/12/20 8:15 p.m.•9 views

CVE-2021-43441

An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form...

5.3CVSS0.00296EPSS

Exploits0References2

Prion•added 2021/12/20 8:15 p.m.•16 views

Design/Logic Flaw

An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form...

5CVSS5.7AI score0.00296EPSS

Exploits0References2Affected Software1

Prion•added 2021/12/20 8:15 p.m.•10 views

Cross site scripting

Multiple Stored XSS Vulnerabilities in the Source Code of iOrder 1.0 allow remote attackers to execute arbitrary code via signup form in the Name and Phone number field...

4.3CVSS6.6AI score0.02989EPSS

Exploits0References2Affected Software1

CVE•added 2021/12/20 7:11 p.m.•45 views

CVE-2021-43441

CVE-2021-43441 affects iOrder 1.0 with an HTML Injection vulnerability in the signup form. Public references consistently describe an HTML injection that could allow an attacker to render arbitrary HTML when a user submits the signup form. CVSS metrics (NVD) show a base score around 5.3 (3.1) wit...

5.3CVSS5.6AI score0.00296EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/12/20 7:11 p.m.•10 views

CVE-2021-43441

An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form...

5.9AI score0.00296EPSS

Exploits0References2

Cvelist•added 2021/12/20 7:6 p.m.•15 views

CVE-2021-43440

Multiple Stored XSS Vulnerabilities in the Source Code of iOrder 1.0 allow remote attackers to execute arbitrary code via signup form in the Name and Phone number field...

6.7AI score0.00547EPSS

Exploits0References2

CVE•added 2021/12/20 7:6 p.m.•37 views

CVE-2021-43440

CVE-2021-43440 affects iOrder 1.0. The vulnerability is multiple stored XSS flaws in the signup form (Name and Phone fields) that could allow remote attackers to execute arbitrary code. The NVD entry confirms a stored XSS issue with a baseline impact of partial integrity loss and no confidentiali...

6.1CVSS6.5AI score0.00547EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by