CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2023/07/28 3:0 a.m.•9 views

CVE-2023-3984 phpscriptpoint RecipePoint recipe-result sql injection

6.5CVSS7.4AI score0.00056EPSS

CVE•added 2023/07/28 3:0 a.m.•30 views

CVE-2023-3984

CVE-2023-3984 affects phpscriptpoint RecipePoint 1.9. The vulnerability is a SQL injection in the /recipe-result file, caused by manipulating parameters text/category/type/difficulty/cuisine/cooking_method. Exploitation can be performed remotely. Multiple sources (NVD, Red Hat, CVE list, PTSecuri...

9.8CVSS7.3AI score0.00056EPSS

Positive Technologies•added 2023/07/28 12:0 a.m.•1 views

PT-2023-27126 · Unknown · Phpscriptpoint Recipepoint

Name of the Vulnerable Software and Affected Versions: phpscriptpoint RecipePoint version 1.9 Description: A critical issue was found in phpscriptpoint RecipePoint, affecting an unknown part of the file /recipe-result. The manipulation of the argument text/category/type/difficulty/cuisine/cooking...

9.8CVSS7AI score0.00056EPSS

Exploits0References5

CNNVD•added 2023/07/28 12:0 a.m.•2 views

phpscriptpoint RecipePoint SQL注入漏洞

RecipePoint is a SaaS multi-vendor recipe platform from the phpscriptpoint team. A SQL injection vulnerability exists in phpscriptpoint RecipePoint version 1.9, which stems from the parameter text/category/type/difficulty/cuisine/cookingmethod in the file /recipe-result that can lead to sql...

9.8CVSS7.1AI score0.00056EPSS

Exploits0References3

OSV•added 2023/07/25 10:15 p.m.•1 views

CVE-2023-3945

A vulnerability was found in phpscriptpoint Lawyer 1.6. It has been classified as problematic. This affects an unknown part of the file search.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-235401 was assigned to this...

NVD•added 2023/07/25 10:15 p.m.•8 views

CVE-2023-3945

6.1CVSS4.5AI score0.00075EPSS

Prion•added 2023/07/25 10:15 p.m.•9 views

Cross site scripting

4CVSS6AI score0.00075EPSS

CVE•added 2023/07/25 9:31 p.m.•51 views

CVE-2023-3945

CVE-2023-3945 affects phpscriptpoint Lawyer 1.6, with the cross-site scripting vulnerability localized to the file search.php. Several connected sources describe that unknown functions in search.php enable remote XSS, impacting users who access the vulnerable page. The exact vulnerable component ...

6.1CVSS4.8AI score0.00075EPSS

Cvelist•added 2023/07/25 9:31 p.m.•16 views

CVE-2023-3945 phpscriptpoint Lawyer search.php cross site scripting

4CVSS6.2AI score0.00075EPSS

NVD•added 2023/07/25 8:15 p.m.•9 views

CVE-2023-3944

A vulnerability was found in phpscriptpoint Lawyer 1.6 and classified as problematic. Affected by this issue is some unknown functionality of the file page.php. The manipulation leads to cross site scripting. The attack may be launched remotely. The identifier of this vulnerability is VDB-235400...

6.1CVSS4.4AI score0.00075EPSS

OSV•added 2023/07/25 8:15 p.m.•0 views

CVE-2023-3944

Prion•added 2023/07/25 8:15 p.m.•13 views

Cross site scripting

4CVSS6AI score0.00075EPSS

CVE•added 2023/07/25 7:31 p.m.•49 views

CVE-2023-3944

Phpscriptpoint Lawyer 1.6 has a cross-site scripting vulnerability in an unknown functionality of page.php. The issue can be exploited remotely and affects page.php behavior; multiple sources (NVD/Red Hat and CVE records) confirm the vulnerability and lack of vendor response. Practical remediatio...

6.1CVSS4.4AI score0.00075EPSS

Cvelist•added 2023/07/25 7:31 p.m.•10 views

CVE-2023-3944 phpscriptpoint Lawyer page.php cross site scripting

4CVSS6.2AI score0.00075EPSS

CNNVD•added 2023/07/25 12:0 a.m.•3 views

phpscriptpoint Lawyer 跨站脚本漏洞

Lawyer is a legal and attorney website by the phpscriptpoint team. A cross-site scripting vulnerability exists in phpscriptpoint Lawyer version 1.6, which stems from the presence of some unknown functions in page.php that lead to cross-site scripting...

6.1CVSS4.2AI score0.00075EPSS

Exploits0References3

Positive Technologies•added 2023/07/25 12:0 a.m.•3 views

PT-2023-26950 · Unknown · Phpscriptpoint Lawyer

Name of the Vulnerable Software and Affected Versions: phpscriptpoint Lawyer version 1.6 Description: A vulnerability was found in the file page.php, which leads to cross site scripting. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond ...

6.1CVSS6.3AI score0.00075EPSS

Exploits0References5

OSV•added 2023/07/24 3:15 a.m.•1 views

CVE-2023-3861

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /search.php. The manipulation leads to cross site scripting. The attack can be launched remotely. The identifier VDB-235213 was...

NVD•added 2023/07/24 3:15 a.m.•8 views

CVE-2023-3861

6.1CVSS4.5AI score0.00081EPSS

OSV•added 2023/07/24 3:15 a.m.•0 views

CVE-2023-3860

A vulnerability was found in phpscriptpoint Insurance 1.2. It has been classified as problematic. Affected is an unknown function of the file /page.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-235212...