Lucene search
K

59124 matches found

Cvelist
Cvelist
added 2025/10/16 10:3 a.m.7 views

CVE-2025-54859

Stored cross-site scripting XSS vulnerability in desknet's NEO V9.0R2.0 and earlier allow execution of arbitrary JavaScript in a user’s web browser...

4.8CVSS0.00273EPSS
Exploits0References2
CVE
CVE
added 2025/10/16 10:3 a.m.8 views

CVE-2025-54859

CVE-2025-54859 is a stored cross-site scripting (XSS) vulnerability in desknet’s NEO versions up to V9.0R2.0. The issue permits execution of arbitrary JavaScript in a user’s browser due to a stored XSS flaw. Connected documents consistently identify desknet’s NEO as the affected product, with the...

4.8CVSS4.7AI score0.00273EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/16 10:3 a.m.1 views

CVE-2025-54760

Stored cross-site scripting XSS vulnerability in desknet's NEO V9.0R2.0 and earlier allow execution of arbitrary JavaScript in a user’s web browser...

5.4CVSS5.2AI score0.00257EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/16 10:3 a.m.9 views

CVE-2025-54760

Stored cross-site scripting XSS vulnerability in desknet's NEO V9.0R2.0 and earlier allow execution of arbitrary JavaScript in a user’s web browser...

5.4CVSS0.00257EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/16 10:3 a.m.3 views

EUVD-2025-34748

Stored cross-site scripting XSS vulnerability in desknet's NEO V9.0R2.0 and earlier allow execution of arbitrary JavaScript in a user’s web browser...

5.4CVSS5.2AI score0.00257EPSS
Exploits0References3
CVE
CVE
added 2025/10/16 10:3 a.m.9 views

CVE-2025-54760

A primary security issue is a Stored cross-site scripting (XSS) vulnerability in desknet’s NEO, affecting v9.0R2.0 and earlier, which could allow arbitrary JavaScript to run in a user’s browser. The CVE is corroborated by multiple sources (NVD/Red Hat/JVN/CVE records) noting the same description....

5.4CVSS5.1AI score0.00257EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/16 10:3 a.m.2 views

CVE-2025-52583

Reflected cross-site scripting XSS vulnerability in desknet's Web Server allows execution of arbitrary JavaScript in a user’s web browser...

6.1CVSS6AI score0.00285EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/16 10:3 a.m.7 views

CVE-2025-52583

Reflected cross-site scripting XSS vulnerability in desknet's Web Server allows execution of arbitrary JavaScript in a user’s web browser...

6.1CVSS0.00285EPSS
Exploits0References2
CVE
CVE
added 2025/10/16 10:3 a.m.9 views

CVE-2025-52583

The CVE-2025-52583 entry describes a Reflected cross-site scripting (XSS) vulnerability in desknet’s Web Server that allows execution of arbitrary JavaScript in a user’s browser. The connected sources confirm the issue is tied to desknet’s Web Server and identify the impact as client-side script ...

6.1CVSS6AI score0.00285EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/16 10:3 a.m.4 views

EUVD-2025-34749

Reflected cross-site scripting XSS vulnerability in desknet's Web Server allows execution of arbitrary JavaScript in a user’s web browser...

6.1CVSS5.4AI score0.00285EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/16 10:3 a.m.2 views

CVE-2025-24833

Stored cross-site scripting XSS vulnerability in desknet's NEO versions V4.0R1.0–V9.0R2.0 allow execution of arbitrary JavaScript in a user’s web browser...

5.4CVSS5.3AI score0.00257EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/16 10:3 a.m.4 views

EUVD-2025-34750

Stored cross-site scripting XSS vulnerability in desknet's NEO versions V4.0R1.0–V9.0R2.0 allow execution of arbitrary JavaScript in a user’s web browser...

5.4CVSS5.2AI score0.00257EPSS
Exploits0References3
CVE
CVE
added 2025/10/16 10:3 a.m.10 views

CVE-2025-24833

CVE-2025-24833 is a stored XSS vulnerability in desknet’s NEO, affecting version range V4.0R1.0–V9.0R2.0. The issue allows execution of arbitrary JavaScript in a user’s browser via a stored payload. The connected Red Hat (RH:CVE-2025-24833) and other feeds confirm the same description. No exploit...

5.4CVSS5.2AI score0.00257EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/16 7:56 a.m.6 views

CVE-2025-11160

The WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom JS module in all versions up to, and including, 8.6.1. This is due to insufficient input sanitization and output escaping of user-supplied JavaScript code in the Custom JS module. This makes...

6.4CVSS5.1AI score0.00194EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.5 views

QuickJS 安全漏洞

QuickJS is a small and embeddable Javascript engine open-sourced by QuickJS. A security vulnerability exists in QuickJS, which stems from the jsprintobject function not properly handling array size changes during callbacks when printing arrays and collection objects, potentially leading to reuse...

8.8CVSS6.5AI score0.00371EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.3 views

NEOJAPAN desknets Web Server 跨站脚本漏洞

NEOJAPAN desknets Web Server is a back-end service for a large network group collaboration software from NEOJAPAN Japan. A cross-site scripting vulnerability exists in NEOJAPAN desknets Web Server, which stems from susceptibility to reflective cross-site scripting attacks that could lead to the...

6.1CVSS6.1AI score0.00285EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.2 views

Desknets Neo 跨站脚本漏洞

Desknets Neo is a remote office support software from Desknets Japan. A cross-site scripting vulnerability exists in Desknets Neo V9.0R2.0 and earlier versions, which originates from stored cross-site scripting and could lead to the execution of arbitrary JavaScript...

4.8CVSS5AI score0.00273EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.2 views

NEOJAPAN desknets NEO 跨站脚本漏洞

NEOJAPAN desknets NEO is a large network group collaboration software from NEOJAPAN Japan. A cross-site scripting vulnerability exists in NEOJAPAN desknets NEO versions V2.0R1.0 through V9.0R2.0 that originates from stored cross-site scripting and could lead to the execution of arbitrary JavaScri...

5.4CVSS5.4AI score0.00257EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.10 views

D-Link Nuclias Connect 安全漏洞

D-Link Nuclias Connect is a network management software from D-Link for centralized management of wireless access points APs, supporting multi-device remote control and reporting capabilities. D-Link Nuclias Connect suffers from an observable response difference vulnerability that stems from the...

6.9CVSS6.9AI score0.00954EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.3 views

Desknets Neo 跨站脚本漏洞

Desknets Neo is a remote office support software from Desknets Japan. A cross-site scripting vulnerability exists in Desknets Neo V9.0R2.0 and earlier versions, which originates from stored cross-site scripting and could lead to the execution of arbitrary JavaScript...

5.4CVSS5.4AI score0.00257EPSS
Exploits0References2
Rows per page
Query Builder