CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/21 3:27 p.m.•5 views

CVE-2025-58092

Multiple reflected cross-site scripting xss vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger these vulnerabilities.This...

6.1CVSS5.6AI score0.00083EPSS

Exploits1References1

CVE•added 2026/01/20 2:49 p.m.•5 views

CVE-2025-58092

MedDream PACS Premium 7.3.6.870 is affected by CVE-2025-58092 and related reflected XSS flaws in config.php (notably the phpexe parameter). A crafted URL can trigger arbitrary JavaScript execution, with impact limited to client-side script execution (per the provided CVSS details: Network access,...

6.1CVSS5.6AI score0.00083EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2026/01/20 2:49 p.m.•1 views

CVE-2025-58092

6.1CVSS5.6AI score0.00083EPSS

Exploits1References1

ATTACKERKB•added 2026/01/20 2:49 p.m.•1 views

CVE-2025-58092

6.1CVSS5.5AI score0.00083EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2026/01/20 12:0 a.m.•2 views

PT-2026-3616

6.1CVSS5.6AI score0.00083EPSS

Exploits1References2

CNNVD•added 2026/01/20 12:0 a.m.•1 views

MedDream PACS Premium Cross-site Scripting Vulnerability

MedDream PACS Premium is an enterprise-level image storage and management server suite developed by MedDream Corporation. Version 7.3.6.870 of MedDream PACS Premium contains a cross-site scripting vulnerability. This vulnerability stems from the phpexe parameter in the config.php function, which...

6.1CVSS5.8AI score0.00083EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by