CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/05/23 9:45 a.m.•4 views

CVE-2024-25344

Cross Site Scripting vulnerability in ITFlow.org before commit v.432488eca3998c5be6b6b9e8f8ba01f54bc12378 allows a remtoe attacker to execute arbitrary code and obtain sensitive information via the settings.php, settings+company.php, settingsdefaults.php,settingsintegrations.php,...

6.1CVSS6.9AI score0.00262EPSS

Exploits2References1

NVD•added 2024/02/26 4:27 p.m.•11 views

CVE-2024-25344

6.1CVSS6.6AI score0.00262EPSS

Exploits2References4

OSV•added 2024/02/26 4:27 p.m.•13 views

CVE-2024-25344

6.1CVSS7.1AI score0.00262EPSS

Exploits2References4

Prion•added 2024/02/26 4:27 p.m.•11 views

Cross site scripting

7.4AI score0.00262EPSS

Exploits2References4

Positive Technologies•added 2024/02/26 12:0 a.m.•2 views

PT-2024-20894 · Unknown · Itflow.Org

Name of the Vulnerable Software and Affected Versions: ITFlow.org versions prior to commit v.432488eca3998c5be6b6b9e8f8ba01f54bc12378 Description: A Cross Site Scripting issue allows a remote attacker to execute arbitrary code and obtain sensitive information via the settings.php,...

6.1CVSS7.4AI score0.00262EPSS

Exploits2References8

Cvelist•added 2024/02/26 12:0 a.m.•16 views

CVE-2024-25344

6.8AI score0.00262EPSS

Exploits2References4

CVE•added 2024/02/26 12:0 a.m.•3477 views

CVE-2024-25344

CVE-2024-25344 relates to ITFlow.org prior to commit v.432488eca3998c5be6b6b9e8f8ba01f54bc12378, described as a Cross Site Scripting/CSRF issue affecting multiple settings components (settings.php, settings+company.php, settings_defaults.php, settings_integrations.php, settings_invoice.php, setti...

6.1CVSS6.8AI score0.00262EPSS

Exploits2References4Affected Software1

Vulnrichment•added 2024/02/26 12:0 a.m.•11 views

CVE-2024-25344

6.4AI score0.00262EPSS

Exploits2References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by