Lucene search
K

1071 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/19 8:15 a.m.4 views

CVE-2026-6562

A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be use...

7.5CVSS6.8AI score0.00274EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/04/19 12:0 a.m.8 views

MuuCmf 安全漏洞

MuuCmf is an open-source application development framework created by Dameng100. Version MuuCmf 1.9.5.20260309 contains a security vulnerability, which stems from the handling of the keyword parameter in the file/index/Search/index.html. This vulnerability may lead to SQL injection attacks...

7.5CVSS7.2AI score0.00274EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.8 views

PT-2026-34733

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.1.0 Description Flowise is a drag and drop user interface for building customized large language model flows. An unauthenticated remote command execution issue exists where a parameter override bypass can be achieve...

9.8CVSS7.6AI score0.13789EPSS
Exploits1References6
Spring Security Advisories
Spring Security Advisories
added 2026/04/15 12:0 a.m.6 views

Spring AI Agentic Patterns (Part 7): Session API — Event-Sourced Short-Term Memory with Context Compaction

A New Session API for Spring AI — Structured, Compactable, Multi-Agent-Ready Part 7 of theSpring AI Agentic Patterns series completes the memory picture. After covering Agent Skills, AskUserQuestionTool, TodoWriteTool, Subagent Orchestration, A2A Integration, and AutoMemoryTools for long-term...

6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/10 7:22 p.m.6 views

CVE-2025-50665

A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of input parameters in the /webkeyword.asp endpoint. An attacker can exploit this vulnerability by sending a crafted HTTP GET request via the name, en, time, memgb2312, and memutf8 parameters...

7.5CVSS6.1AI score0.00599EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/09 9:31 p.m.3 views

EUVD-2023-60557

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS6AI score0.00194EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/09 9:31 p.m.4 views

EUVD-2023-60554

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filterkeyword parameter. Attackers can craft URLs containing JavaScript payloads in the filterkeyword GET parameter of the...

6.1CVSS6.2AI score0.00225EPSS
Exploits0References5
NVD
NVD
added 2026/04/09 9:16 p.m.8 views

CVE-2023-54361

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filterkeyword parameter. Attackers can craft URLs containing JavaScript payloads in the filterkeyword GET parameter of the...

6.1CVSS0.00225EPSS
Exploits0References4
NVD
NVD
added 2026/04/09 9:16 p.m.6 views

CVE-2023-54362

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS0.00194EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/09 8:54 p.m.6 views

CVE-2023-54362 Joomla VirtueMart Shopping-Cart 4.0.12 Reflected XSS via keyword

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS6AI score0.00194EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/09 8:54 p.m.22 views

CVE-2023-54362 Joomla VirtueMart Shopping-Cart 4.0.12 Reflected XSS via keyword

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS0.00194EPSS
Exploits0References4
CVE
CVE
added 2026/04/09 8:54 p.m.10 views

CVE-2023-54362

Joomla VirtueMart Shopping-Cart 4.0.12 is affected by a reflected XSS in the keyword parameter of the product-variants endpoint. The vulnerability allows an attacker to craft a URL containing a script payload that, when visited by a user, executes arbitrary JavaScript in the victim’s browser and ...

6.1CVSS6AI score0.00194EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/09 8:54 p.m.4 views

CVE-2023-54361 Joomla iProperty Real Estate 4.1.1 Reflected XSS via filter_keyword

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filterkeyword parameter. Attackers can craft URLs containing JavaScript payloads in the filterkeyword GET parameter of the...

6.1CVSS6.1AI score0.00225EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/09 8:54 p.m.3 views

CVE-2023-54362

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS6AI score0.00194EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/09 8:54 p.m.4 views

CVE-2023-54361

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filterkeyword parameter. Attackers can craft URLs containing JavaScript payloads in the filterkeyword GET parameter of the...

6.1CVSS6.2AI score0.00225EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/09 8:54 p.m.10 views

CVE-2023-54361

Joomla iProperty Real Estate 4.1.1 is affected by a reflected XSS in the filter_keyword parameter of the all-properties-with-map endpoint. The vulnerability allows an attacker to inject JavaScript payloads via a crafted URL, potentially executing code in a victim’s browser and compromising sessio...

6.1CVSS6.2AI score0.00225EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/09 8:54 p.m.17 views

CVE-2023-54361 Joomla iProperty Real Estate 4.1.1 Reflected XSS via filter_keyword

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filterkeyword parameter. Attackers can craft URLs containing JavaScript payloads in the filterkeyword GET parameter of the...

6.1CVSS0.00225EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.3 views

PT-2026-31729

Joomla VirtueMart Shopping-Cart 4.0.12 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the keyword parameter. Attackers can craft malicious URLs containing script payloads in the keyword parameter of the product-variants...

6.1CVSS6AI score0.00194EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.7 views

Joomla VirtueMart Shopping-Cart 跨站脚本漏洞

Joomla VirtueMart Shopping-Cart is an open-source e-commerce shopping cart and online store management extension for VirtueMart. Version 4.0.12 of Joomla VirtueMart Shopping-Cart contains a cross-site scripting vulnerability, which stems from improper handling of the keyword parameter. This...

6.1CVSS5.6AI score0.00194EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.10 views

Thethinkery Joomla iProperty Real Estate 跨站脚本漏洞

Thethinkery Joomla iProperty Real Estate is an extension system for real estate information display and property management developed by Thethinkery. Version 4.1.1 of Thethinkery Joomla iProperty Real Estate contains a cross-site scripting vulnerability. This vulnerability stems from improper...

6.1CVSS5.6AI score0.00225EPSS
Exploits0References4
Rows per page
Query Builder