CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-8610

Malware in sbrugna...

5.4CVSS5.5AI score0.00138EPSS

Exploits3References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-3996

Malware in sbrugna...

4.3CVSS6.3AI score0.00254EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 5:6 a.m.•5 views

CVE-2012-4052

Multiple cross-site scripting XSS vulnerabilities in Jease before 2.9, when creating a comment, allow remote attackers to inject arbitrary web script or HTML via the 1 author, 2 subject, or 3 comment parameter...

4.3CVSS5.9AI score0.00254EPSS

Exploits0References1

CNVD•added 2018/03/09 12:0 a.m.•1 views

Jease Cross-Site Scripting Vulnerability (CNVD-2018-04746)

Jease is a set of open source content management system CMS written in Java language . A cross-site scripting vulnerability exists in Jease. A remote attacker can exploit this vulnerability to inject arbitrary Web script or HTML...

5.4CVSS6.3AI score0.00138EPSS

Exploits3References1

Prion•added 2018/03/07 3:29 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in Jease 2.11 allows remote authenticated users to inject arbitrary web script or HTML via a content section note...

3.5CVSS5.6AI score0.00138EPSS

Exploits3References2Affected Software1

NVD•added 2018/03/07 3:29 p.m.•6 views

CVE-2014-8780

Cross-site scripting XSS vulnerability in Jease 2.11 allows remote authenticated users to inject arbitrary web script or HTML via a content section note...

5.4CVSS5.1AI score0.00138EPSS

Exploits3References2

Cvelist•added 2018/03/07 3:0 p.m.•11 views

CVE-2014-8780

Cross-site scripting XSS vulnerability in Jease 2.11 allows remote authenticated users to inject arbitrary web script or HTML via a content section note...

5.1AI score0.00138EPSS

Exploits3References2

CVE•added 2018/03/07 3:0 p.m.•36 views

CVE-2014-8780

CVE-2014-8780 describes a cross-site scripting (XSS) vulnerability in Jease 2.11. The issue allows remote authenticated users to inject arbitrary web script or HTML via the content section note, with the attack vector involving the Create module’s content field and persistent scripting in the bro...

5.4CVSS5AI score0.00138EPSS

Exploits3References2Affected Software1

securityvulns•added 2014/12/22 12:0 a.m.•63 views

Jease CMS v2.11 - Persistent UI Web Vulnerability

Document Title: =============== Jease CMS v2.11 - Persistent UI Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1373 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8780 CVE-ID: ======= CVE-2014-8780 Release Date: =============...

3.5CVSS0.00138EPSS

Exploits3

Vulnerability Lab•added 2014/12/12 12:0 a.m.•86 views

Jease CMS v2.11 - Persistent UI Web Vulnerability

3.5CVSS5.9AI score0.00138EPSS

Exploits3

Vulnerability Lab•added 2014/12/12 12:0 a.m.•50 views

Jease CMS v2.11 - Persistent UI Web Vulnerability

5.4CVSS5.9AI score0.00138EPSS

Exploits3

securityvulns•added 2012/09/03 12:0 a.m.•121 views

Cross-Site Scripting (XSS) in Jease

Advisory ID: HTB23104 Product: Jease Vendor: jease.org Vulnerable Versions: 2.8 and probably prior Tested Version: 2.8 Vendor Notification: July 25, 2012 Public Disclosure: August 15, 2012 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2012-4052 CVSSv2 Base Score: 4.3...

4.3CVSS6.5AI score0.00254EPSS

Exploits0

NVD•added 2012/08/20 8:55 p.m.•13 views

CVE-2012-4052

4.3CVSS5.7AI score0.00254EPSS

Exploits0References3

Prion•added 2012/08/20 8:55 p.m.•11 views

Cross site scripting

4.3CVSS6AI score0.00254EPSS

Exploits0References3Affected Software1

Cvelist•added 2012/08/20 8:0 p.m.•16 views

CVE-2012-4052

5.7AI score0.00254EPSS

Exploits0References3

CVE•added 2012/08/20 8:0 p.m.•42 views

CVE-2012-4052

CVE-2012-4052 concerns a cross-site scripting (XSS) vulnerability in Jease prior to 2.9. The issue arises when creating a comment, where the POST parameters for the fields (author, subject, comment) are not properly sanitized, allowing an attacker to inject arbitrary HTML/JavaScript executed in t...

4.3CVSS5.8AI score0.00254EPSS

Exploits0References3Affected Software1

htbridge•added 2012/07/25 12:0 a.m.•31 views

Cross-Site Scripting (XSS) in Jease

High-Tech Bridge Security Research Lab discovered vulnerability in Jease, which can be exploited to perform Cross-Site Scripting XSS attacks. 1 Cross-Site Scripting XSS in Jease: CVE-2012-4052 Input passed via the "author", "subject" and "comment" POST parameters when creating a new comment is no...

4.3CVSS5.9AI score0.00254EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by