CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•14 views

EUVD-2022-46063

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.01278EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 12:5 a.m.•7 views

CVE-2022-25228

CandidATS Version 3.0.0 Beta allows an authenticated user to inject SQL queries in '/index.php?m=settings=show' via the 'userID' parameter, in '/index.php?m=candidates=show' via the 'candidateID', in '/index.php?m=joborders=show' via the 'jobOrderID' and '/index.php?m=companies=show' via the...

6.5CVSS7.3AI score0.00844EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:1 a.m.•16 views

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

6.1CVSS6.1AI score0.01278EPSS

Exploits1References1

BDU FSTEC•added 2023/12/15 12:0 a.m.•4 views

The vulnerability of the OpenCATS personnel recruitment system lies in the lack of measures to protect the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the OpenCATS personnel recruitment system management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using the joborderID parameter...

6.4CVSS6AI score0.01278EPSS

Exploits1References4Affected Software1

NVD•added 2022/10/19 6:15 p.m.•15 views

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

6.1CVSS0.01278EPSS

Exploits1References2

OSV•added 2022/10/19 6:15 p.m.•23 views

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

6.1CVSS6.1AI score0.01278EPSS

Exploits1References2

Prion•added 2022/10/19 6:15 p.m.•18 views

Cross site scripting

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

5.8CVSS6AI score0.01278EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/10/19 12:0 a.m.•8 views

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

6.1AI score0.01278EPSS

Exploits1References2

CNNVD•added 2022/10/19 12:0 a.m.•5 views

OpenCats 跨站脚本漏洞

OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can implement reflective cross-site scripting using its joborderID parameter. No detailed vulnerability details are available at...

6.1CVSS6.2AI score0.01278EPSS

Exploits1References3

CVE•added 2022/10/19 12:0 a.m.•82 views

CVE-2022-43014

OpenCATS v0.9.6 contains a reflected cross-site scripting (XSS) vulnerability in the joborderID parameter. An attacker can inject arbitrary script into the victim’s browser context, potentially stealing cookie-based authentication credentials and enabling further attacks. Practical impact include...

6.1CVSS6AI score0.01278EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/10/19 12:0 a.m.•13 views

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

6.2AI score0.01278EPSS

Exploits1References2

CVE•added 2022/08/18 7:29 p.m.•60 views

CVE-2022-25228

CVE-2022-25228 : Affected software is CandidATS 3.0.0 Beta. An authenticated user can inject SQL via parameters on several endpoints: /index.php?m=settings&a=show (userID), /index.php?m=candidates&a=show (candidateID), /index.php?m=joborders&a=show (jobOrderID), and /index.php?m=companies&a=show ...

6.5CVSS6.6AI score0.00844EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by