CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•8 views

EUVD-2017-3647

Malware in sbrugna...

6.1CVSS6.1AI score0.0295EPSS

Exploits0References10

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-36947

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0088EPSS

Exploits1References5

OSV•added 2022/05/17 2:30 a.m.•4 views

GHSA-V7QF-22RW-CHPH MantisBT XSS via adm_config_report.php's action parameter

A cross-site scripting XSS vulnerability in the MantisBT Configuration Report page admconfigreport.php allows remote attackers to inject arbitrary code through a crafted 'action' parameter. This is fixed in 1.3.8, 2.1.2, and 2.2.2...

4.8CVSS6.1AI score0.00929EPSS

Exploits1References6

Github Security Blog•added 2022/05/14 1:52 a.m.•8 views

MantisBT allows XSS via Edit Filter page

A cross-site scripting XSS vulnerability in the Edit Filter page managefilteredit page.php in MantisBT 2.1.0 through 2.17.1 allows remote attackers if access rights permit it to inject arbitrary code if CSP settings permit it through a crafted project name...

5.4CVSS5.8AI score0.00686EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2022/05/13 1:5 a.m.•8 views

MantisBT XSS allows unsanitized input via admin/install.php

An XSS issue was discovered in admin/install.php in MantisBT before 1.3.12 and 2.x before 2.5.2. Some variables under user control in the MantisBT installation script are not properly sanitized before being output, allowing remote attackers to inject arbitrary JavaScript code, as demonstrated by...

6.1CVSS6AI score0.0295EPSS

Exploits0References8Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by