Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2026/01/15 12:23 a.m.4 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/01/14 6:31 p.m.6 views

pH7-Social-Dating-CMS affected by a stored cross-site scripting (XSS) vulnerability

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5AI score0.00257EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/14 6:16 p.m.4 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References2
NVD
NVD
added 2026/01/14 6:16 p.m.7 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS0.00257EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/14 12:0 a.m.2 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

5.4CVSS5AI score0.00257EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.8 views

pH7 Social Dating Builder 17.9.1 安全漏洞

pH7 Social Dating Builder is an open source social dating system from pH7 Social Dating CMS. A security vulnerability exists in pH7 Social Dating Builder version 17.9.1, which stems from stored cross-site scripting in the user profile description field...

5.4CVSS6AI score0.00257EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/01/14 12:0 a.m.10 views

PT-2026-2927

Name of the Vulnerable Software and Affected Versions pH7Software pH7-Social-Dating-CMS version 17.9.1 Description A stored cross-site scripting XSS issue exists in the user profile Description field. This allows for the injection of malicious scripts that can be executed when other users view th...

6.1CVSS6AI score0.00257EPSS
Exploits1References9
Cvelist
Cvelist
added 2026/01/14 12:0 a.m.31 views

CVE-2025-63644

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

0.00257EPSS
Exploits1References2
CVE
CVE
added 2026/01/14 12:0 a.m.12 views

CVE-2025-63644

CVE-2025-63644 is a stored XSS in pH7Software pH7-Social-Dating-CMS 17.9.1, specifically in the user profile Description field. The CVE entry lists CVSS v3.1 details: AV:N, AC:L, PR:L, UI:R, S:C, C:L/I:L, A:N with a base score of 5.4 (Medium). The root cause is a vulnerability in the Description ...

5.4CVSS5.3AI score0.00257EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/01/14 12:0 a.m.4 views

EUVD-2026-2439

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the user profile Description field...

6.1CVSS5.2AI score0.00257EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/11/13 7:11 a.m.4 views

CVE-2025-63645

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.4CVSS5.6AI score0.00175EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/13 12:30 a.m.3 views

EUVD-2025-150400

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.4CVSS5.1AI score0.00175EPSS
Exploits1References3
OSV
OSV
added 2025/11/12 10:15 p.m.1 views

CVE-2025-63645

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.4CVSS5.7AI score0.00175EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/12 12:0 a.m.7 views

CVE-2025-63645

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

0.00175EPSS
Exploits1References2
CVE
CVE
added 2025/11/12 12:0 a.m.8 views

CVE-2025-63645

CVE-2025-63645 is a stored XSS in pH7Software pH7-Social-Dating-CMS 17.9.1, affecting the messaging system where unsanitized message content is persisted and later rendered in Inbox view without proper encoding, allowing attacker-controlled content to execute in a recipient’s browser. Public docs...

5.4CVSS5.2AI score0.00175EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/12 12:0 a.m.2 views

CVE-2025-63645

A stored cross-site scripting XSS vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. Unsanitized message content submitted by one user is persisted by the server and later rendered in another user's Inbox view without appropriate context-aware...

5.2AI score0.00175EPSS
Exploits1References2
Rows per page
Query Builder