Lucene search
K

10 matches found

Circl
Circl
β€’added yesterdayβ€’5 views

CVE-2026-12076

creationtimestamp| type| source ---|---|--- 2026-06-30 10:00:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpiqn3brkz2v...

9.3CVSS5.8AI score0.00431EPSS
Exploits0References1
Cvelist
Cvelist
β€’added 2026/05/17 12:11 p.m.β€’33 views

CVE-2018-25330 Joomla! EkRishta 2.10 Persistent XSS and SQL Injection

Joomla! extension EkRishta 2.10 contains persistent cross-site scripting and SQL injection vulnerabilities that allow attackers to inject malicious code through profile fields and POST parameters. Attackers can inject script payloads in profile information fields like Address that execute when...

8.8CVSS0.00317EPSS
Exploits0References4
Circl
Circl
β€’added 2026/05/15 3:0 a.m.β€’12 views

CVE-2020-17103

creationtimestamp| type| source ---|---|--- 2026-05-15 03:00:06+00:00| published-proof-of-concept| Telegram/4tIKexrP1B7eYtOW91-QaKQ8EIqNMri3pu2CJIQ1mA899I 2026-05-16 09:09:16+00:00| seen| https://t.me/P0x3k1N73LL1G3NC3/354 2026-05-16 09:41:16+00:00| seen|...

7.8CVSS7.1AI score0.27023EPSS
Exploits1References16
EUVD
EUVD
β€’added 2026/04/04 3:30 p.m.β€’5 views

EUVD-2018-21756

FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by injecting oversized buffer data into the site profile IP field. Attackers can create a malicious site profile containing 500 bytes of repeated characters and paste it into the IP...

6.9CVSS6.1AI score0.003EPSS
Exploits1References5
NVD
NVD
β€’added 2026/04/04 2:16 p.m.β€’6 views

CVE-2018-25252

FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by injecting oversized buffer data into the site profile IP field. Attackers can create a malicious site profile containing 500 bytes of repeated characters and paste it into the IP...

6.9CVSS0.003EPSS
Exploits1References4
Circl
Circl
β€’added 2026/01/29 9:23 a.m.β€’6 views

CVE-2026-23566

creationtimestamp| type| source ---|---|--- 2026-01-29 09:23:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdkhos7rmx2t...

6.5CVSS5.8AI score0.00168EPSS
Exploits0References1
Packet Storm
Packet Storm
β€’added 2025/12/08 12:0 a.m.β€’160 views

πŸ“„ Coohom SaaS Cross Site Scripting

Coohoom SaaS is susceptible to a persistent cross site scripting vulnerability. CVE-2025-65300 Description CVE-2025-65300: Stored Cross-Site Scripting XSS Vulnerability in Coohom SaaS Platform Disclosure Date: 2025-10-28 Last Updated: 2025-10-28 Reporter: Phisit Pupiw Vendor: Coohom CWE: CWE-79 –...

5.4CVSS6.4AI score0.00163EPSS
Exploits1
OSV
OSV
β€’added 2021/01/29 6:15 a.m.β€’3 views

CVE-2021-3298

Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter...

5.4CVSS6.1AI score0.02144EPSS
Exploits2References2
OSV
OSV
β€’added 2021/01/29 6:15 a.m.β€’1 views

UBUNTU-CVE-2021-3298

Collabtive 3.1 allows XSS when an authenticated user enters an XSS payload into the address section of the profile edit page, aka the manageuser.php?action=edit address1 parameter...

5.4CVSS5.8AI score0.02144EPSS
Exploits2References4
OSV
OSV
β€’added 2018/08/06 9:29 p.m.β€’4 views

CVE-2018-14869

PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile...

5.4CVSS5.8AI score0.01604EPSS
Exploits5References2
Rows per page
Query Builder