CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-3852

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00216EPSS

Exploits0References3

Github Security Blog•added 2022/05/14 1:14 a.m.•19 views

Snipe-IT XSS Vulnerability

Snipe-IT before 4.6.14 has XSS, as demonstrated by logmeta values and the user's last name in the API...

6.1CVSS6.9AI score0.00216EPSS

Exploits0References3Affected Software1

Veracode•added 2019/03/28 2:13 a.m.•11 views

Cross-Site Scripting (XSS)

snipe/snipe-it is vulnerable to cross-site scripting XSS. User input are not escaped before being displayed on a user's browser, allowing remote attackers to inject arbitrary Javascript into a victim's browser via logmeta values and user's last name in the API...

6.1CVSS6AI score0.00216EPSS

Exploits0References1Affected Software1

Prion•added 2019/03/27 4:29 a.m.•13 views

Cross site scripting

Snipe-IT before 4.6.14 has XSS, as demonstrated by logmeta values and the user's last name in the API...

4.3CVSS6.2AI score0.00216EPSS

Exploits0References1Affected Software1

CVE•added 2019/03/27 3:54 a.m.•42 views

CVE-2019-10118

CVE-2019-10118 relates to Snipe-IT, where versions before 4.6.14 are vulnerable to cross-site scripting (XSS) via log_meta values and the user’s last name in the API. The issue is a client-side input handling flaw that permits injection of arbitrary JavaScript/HTML when data is displayed in a use...

6.1CVSS6.2AI score0.00216EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by