CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2022/06/08 4:15 p.m.•13 views

CVE-2022-30899

A Cross Site Scripting vulnerabilty exists in PartKeepr 1.4.0 via the 'name' field in /api/partcategories...

4.8CVSS6.5AI score

Exploits0References1

NVD•added 2022/06/08 4:15 p.m.•10 views

CVE-2022-30899

A Cross Site Scripting vulnerabilty exists in PartKeepr 1.4.0 via the 'name' field in /api/partcategories...

4.8CVSS0.00219EPSS

Exploits0References1

Prion•added 2022/06/08 4:15 p.m.•13 views

Cross site scripting

A Cross Site Scripting vulnerabilty exists in PartKeepr 1.4.0 via the 'name' field in /api/partcategories...

3.5CVSS5AI score0.00219EPSS

Exploits0References1Affected Software1

CVE•added 2022/06/08 3:51 p.m.•505 views

CVE-2022-30899

CVE-2022-30899 describes a Cross Site Scripting vulnerability in PartKeepr 1.4.0, exploitable via the name field in /api/part_categories. The issue stems from improper input handling that allows injected JavaScript when rendering the name, enabling potential code execution in a user’s browser. Af...

4.8CVSS5AI score0.00219EPSS

Exploits0References1Affected Software1

OSV•added 2022/05/03 1:15 p.m.•9 views

CVE-2021-39390

Stored XSS in PartKeepr 1.4.0 Edit section in multiple api endpoints via name parameter...

5.4CVSS5.8AI score

Exploits0References3

NVD•added 2022/05/03 1:15 p.m.•11 views

CVE-2021-39390

Stored XSS in PartKeepr 1.4.0 Edit section in multiple api endpoints via name parameter...

5.4CVSS0.0024EPSS

Exploits1References3