CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-5727

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00281EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 3:51 p.m.•5 views

CVE-2020-14146

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATHINFO...

5.4CVSS5.8AI score0.00281EPSS

Exploits1

OSV•added 2022/05/24 5:20 p.m.•19 views

GHSA-X6GQ-VR59-4Q5Q KumbiaPHP Cross-site Scripting

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia/PATHINFO...

5.4CVSS5.1AI score0.00281EPSS

Exploits1References4

Github Security Blog•added 2022/05/24 5:20 p.m.•16 views

KumbiaPHP Cross-site Scripting

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia/PATHINFO...

5.4CVSS5.8AI score0.00281EPSS

Exploits1References4Affected Software1

CNVD•added 2020/06/16 12:0 a.m.•6 views

KumbiaPHP Cross-Site Scripting Vulnerability

KumbiaPHP is a lightweight, BSD-licensed PHP framework. A cross-site scripting vulnerability exists in KumbiaPHP 1.1.1 and earlier versions in development mode. An attacker can exploit this vulnerability via public/pages/kumbia PATHINFO to conduct cross-site scripting attacks...

5.4CVSS6AI score0.00281EPSS

Exploits1References1

OSV•added 2020/06/15 2:15 p.m.•13 views

CVE-2020-14146

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATHINFO...

5.4CVSS5.8AI score

Exploits0References2

NVD•added 2020/06/15 2:15 p.m.•10 views

CVE-2020-14146

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATHINFO...

5.4CVSS0.00281EPSS

Exploits1References2

Prion•added 2020/06/15 2:15 p.m.•12 views

Design/Logic Flaw

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATHINFO...

3.5CVSS5.2AI score0.00281EPSS

Exploits1References2Affected Software1

Cvelist•added 2020/06/15 1:47 p.m.•22 views

CVE-2020-14146

KumbiaPHP through 1.1.1, in Development mode, allows XSS via the public/pages/kumbia PATHINFO...

5.2AI score0.00281EPSS

Exploits1References2

CVE•added 2020/06/15 1:47 p.m.•42 views

CVE-2020-14146

CVE-2020-14146 affects KumbiaPHP (1.1.1 and earlier) in Development mode, enabling Cross‑Site Scripting via public/pages/kumbia PATH_INFO. The root cause is improper handling of PATH_INFO that allows injection/execution of arbitrary JavaScript in a victim’s browser. Several sources (NVD entry, Re...

5.4CVSS5.1AI score0.00281EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by