CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Positive Technologies•added 2026/05/11 12:0 a.m.•7 views

PT-2026-39866

Name of the Vulnerable Software and Affected Versions HTTP::Tiny versions prior to 0.093 Description Perl HTTP::Tiny fails to validate CRLF Carriage Return Line Feed sequences in HTTP request lines or control field header values. The issue involves unvalidated inputs including the method and URI ...

6.5CVSS5.8AI score0.00038EPSS

Exploits0References10

NVD•added 2020/03/19 6:15 p.m.•9 views

CVE-2019-20520

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/method/ URI...

7.4CVSS6.3AI score0.00344EPSS

Exploits1References1

Prion•added 2020/03/19 6:15 p.m.•10 views

Cross site scripting

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/method/ URI...

4.3CVSS5.9AI score0.00344EPSS

Exploits1References1Affected Software1

CVE•added 2020/03/19 5:52 p.m.•37 views

CVE-2019-20520

CVE-2019-20520 affects ERPNext 11.1.47 and is a reflected XSS vulnerability that can be triggered via the PATH_INFO to the api/method/ URI. Multiple connected feeds corroborate the same description. CVSS metrics: CVSSv3.1 base score 6.1 (NETWORK, LOW attack complexity, NONE privileges, UI REQUIRE...

7.4CVSS5.9AI score0.00344EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/03/19 5:52 p.m.•9 views

CVE-2019-20520

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the api/method/ URI...

7.4CVSS6.1AI score0.00344EPSS

Exploits1References1

Cvelist•added 2014/12/19 8:0 p.m.•16 views

CVE-2013-7401

The parserequest function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service crash via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method...

6.2AI score0.01382EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by