CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7648 matches found

NVD•added 2023/11/30 2:15 p.m.•17 views

CVE-2023-6429

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/clientsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user ...

6.3CVSS0.00388EPSS

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•21 views

CVE-2023-6431

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/categoriesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user t...

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•22 views

CVE-2023-6429

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•14 views

CVE-2023-6432

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/itemsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to sto...

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•21 views

CVE-2023-6433

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/suppliersview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to...

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•5 views

CVE-2023-6424

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/diseasesymptomsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an...

5.4CVSS5.7AI score0.00388EPSS

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•5 views

CVE-2023-6425

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/medicalrecordsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacki...

5.4CVSS5.7AI score0.00395EPSS

Exploits0References2

OSV•added 2023/11/30 2:15 p.m.•24 views

CVE-2023-6427

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoicesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•16 views

CVE-2023-6428

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/itemsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to...

5.4CVSS5.9AI score

Exploits0References1

NVD•added 2023/11/30 2:15 p.m.•16 views

CVE-2023-6424

6.3CVSS0.00388EPSS

Exploits0References1

NVD•added 2023/11/30 2:15 p.m.•19 views

CVE-2023-6427

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoicesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

6.3CVSS0.00388EPSS

Exploits0References1

NVD•added 2023/11/30 2:15 p.m.•19 views

CVE-2023-6428

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/itemsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to...

6.3CVSS0.00388EPSS

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•20 views

CVE-2023-6426

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /invoicing/app/invoicesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user...

5.4CVSS5.9AI score

Exploits0References1

OSV•added 2023/11/30 2:15 p.m.•2 views

CVE-2023-6422

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/patientsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking use...

5.4CVSS5.7AI score0.00388EPSS

Exploits0References1

NVD•added 2023/11/30 2:15 p.m.•17 views

CVE-2023-6422

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/patientsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking use...

6.3CVSS0.00388EPSS

Exploits0References1

Prion•added 2023/11/30 2:15 p.m.•14 views

Design/Logic Flaw

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/suppliersview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user to...

4.9CVSS6.1AI score0.00388EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/30 2:15 p.m.•12 views

Design/Logic Flaw

A vulnerability has been discovered in BigProf Online Invoicing System 2.6, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /inventory/categoriesview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user t...

4.9CVSS6.1AI score0.00388EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/30 2:15 p.m.•16 views

Design/Logic Flaw

4.9CVSS6.1AI score0.00388EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/30 2:15 p.m.•18 views

Design/Logic Flaw

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/medicalrecordsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacki...

4.9CVSS6.2AI score0.00395EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/30 2:15 p.m.•11 views

Design/Logic Flaw

A vulnerability has been discovered in BigProf Online Clinic Management System 2.2, which does not sufficiently encode user-controlled input, resulting in persistent XSS through /clinic/eventsview.php, in the FirstRecord parameter. Exploitation of this vulnerability could allow an attacking user ...

4.9CVSS6.2AI score0.00388EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by