Lucene search
+L

8 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-7684

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00394EPSS
Exploits1References5
redhatcve
redhatcve
added 2025/05/23 12:40 a.m.8 views

CVE-2022-40849

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4CVSS5.7AI score0.00394EPSS
Exploits1References1
osv
osv
added 2022/12/01 6:30 a.m.22 views

GHSA-M9MF-RQX6-2XPC ThinkCMF Stored Cross-Site Scripting (XSS)

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4CVSS5.2AI score0.00394EPSS
Exploits1References5
github
github
added 2022/12/01 6:30 a.m.26 views

ThinkCMF Stored Cross-Site Scripting (XSS)

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4CVSS5.6AI score0.00394EPSS
Exploits1References5Affected Software1
nvd
nvd
added 2022/12/01 5:15 a.m.35 views

CVE-2022-40849

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4CVSS0.00394EPSS
Exploits1References1
prion
prion
added 2022/12/01 5:15 a.m.17 views

Cross site scripting

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

4.9CVSS5.2AI score0.00394EPSS
Exploits1References1Affected Software1
osv
osv
added 2022/12/01 12:0 a.m.26 views

CVE-2022-40849

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4CVSS5.6AI score0.00394EPSS
Exploits1References3
cvelist
cvelist
added 2022/12/01 12:0 a.m.38 views

CVE-2022-40849

ThinkCMF version 6.0.7 is affected by Stored Cross-Site Scripting XSS. An attacker who successfully exploited this vulnerability could inject a Persistent XSS payload in the Slideshow Management section that execute arbitrary JavaScript code on the client side, e.g., to steal the administrator's...

5.4AI score0.00394EPSS
Exploits1References1
Rows per page
Query Builder