CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-23832

Malware in sbrugna...

5.4CVSS5.6AI score0.00459EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-2315

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00357EPSS

Exploits1References7

OSV•added 2022/07/26 4:15 a.m.•0 views

CVE-2020-36290

The Livesearch macro in Confluence Server and Data Center before version 7.4.5, from version 7.5.0 before 7.6.3, and from version 7.7.0 before version 7.7.4 allows remote attackers with permission to edit a page or blog to inject arbitrary HTML or JavaScript via a cross site scripting XSS...

5.4CVSS5.4AI score

Exploits0References1

NVD•added 2022/07/26 4:15 a.m.•11 views

CVE-2020-36290

5.4CVSS0.00459EPSS

Exploits0References1

Prion•added 2022/07/26 4:15 a.m.•15 views

Cross site scripting

4.9CVSS5.2AI score0.00459EPSS

Exploits0References1Affected Software2

Vulnrichment•added 2022/07/26 4:5 a.m.•10 views

CVE-2020-36290

5.5AI score0.00459EPSS

Exploits0References1

CNNVD•added 2022/07/26 12:0 a.m.•2 views

Atlassian Jira Confluence Server and Data Center 跨站脚本漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A security vulnerability exists in Confluence Server and Data Center, which originates in the Livesearch macro that allows remot...

5.4CVSS5.6AI score0.00459EPSS

Exploits0References2

Positive Technologies•added 2022/07/26 12:0 a.m.•2 views

PT-2022-8970 · Atlassian · Confluence

Name of the Vulnerable Software and Affected Versions: Confluence Server and Data Center versions prior to 7.4.5 Confluence Server and Data Center versions 7.5.0 through 7.6.3 Confluence Server and Data Center versions 7.7.0 through 7.7.4 Description: The Livesearch macro in Confluence Server and...

5.4CVSS5.2AI score0.00459EPSS

Exploits0References7

OSV•added 2022/05/02 12:11 a.m.•15 views

GHSA-46F9-F8JM-MW2X Plone Cross-site Scripting vulnerability in the LiveSearch module

Cross-site scripting XSS vulnerability in the LiveSearch module in Plone before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the Description field for search results, as demonstrated using the onerror Javascript even in an IMG tag...

4.3CVSS5.6AI score0.00357EPSS

Exploits1References6

Github Security Blog•added 2022/05/02 12:11 a.m.•17 views

Plone Cross-site Scripting vulnerability in the LiveSearch module

4.3CVSS6.1AI score0.00357EPSS

Exploits1References6Affected Software1

Atlassian•added 2020/07/28 1:4 a.m.•32 views

Stored XSS in the Livesearch macro - CVE-2020-36290

5.4CVSS5.1AI score0.00459EPSS

Exploits0

ATTACKERKB•added 2008/10/15 8:0 p.m.•2 views

CVE-2008-4571

4.3CVSS5.7AI score0.00357EPSS

Exploits1References6

Prion•added 2008/10/15 8:0 p.m.•15 views

Cross site scripting

4.3CVSS6.2AI score0.00357EPSS

Exploits1References5Affected Software1

UbuntuCve•added 2008/10/15 8:0 p.m.•21 views

CVE-2008-4571

4.3CVSS6AI score0.00357EPSS

Exploits1References1

Cvelist•added 2008/10/15 6:12 p.m.•15 views

CVE-2008-4571

5.7AI score0.00357EPSS

Exploits1References5

CVE•added 2008/10/15 6:12 p.m.•53 views

CVE-2008-4571

CVE-2008-4571 is a Cross-site scripting (XSS) vulnerability in Plone's LiveSearch module prior to version 3.0.4. The Description field for search results can be manipulated to inject arbitrary web script or HTML (demonstrated via onerror in an IMG tag). The issue affects Plone’s LiveSearch compon...

4.3CVSS5.7AI score0.00357EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by