Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

153 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:54 a.m.3 views

CVE-2018-4834

A vulnerability has been identified in Desigo PXC00-E.D V4.10 All versions V4.10.111, Desigo PXC00-E.D V5.00 All versions V5.0.171, Desigo PXC00-E.D V5.10 All versions V5.10.69, Desigo PXC00-E.D V6.00 All versions V6.0.204, Desigo PXC00/64/128-U V4.10 All versions V4.10.111 only with web module,...

10CVSS7AI score0.00992EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/10 8:36 a.m.1 views

CVE-2025-41748

An XSS vulnerability in pxcDot1xCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS6.3AI score0.00125EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/10 8:36 a.m.1 views

CVE-2025-41745

An XSS vulnerability in pxcportCntr2.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-leve...

7.1CVSS6.3AI score0.00068EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/10 8:36 a.m.2 views

CVE-2025-41750

An XSS vulnerability in pxcPortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS6.3AI score0.00125EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/10 8:36 a.m.2 views

CVE-2025-41751

An XSS vulnerability in pxcportCntr.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS6.3AI score0.00125EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/09 6:30 p.m.1 views

EUVD-2025-201897

An XSS vulnerability in pxcvlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to...

7.1CVSS5.8AI score0.00125EPSS
Exploits0References2
EUVD
EUVDadded 2025/12/09 6:30 p.m.2 views

EUVD-2025-201902

An XSS vulnerability in pxcportSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS5.8AI score0.00125EPSS
Exploits0References2
NVD
NVDadded 2025/12/09 4:17 p.m.1 views

CVE-2025-41752

An XSS vulnerability in pxcportSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS0.00125EPSS
Exploits0References1
OSV
OSVadded 2025/12/09 4:17 p.m.0 views

CVE-2025-41748

An XSS vulnerability in pxcDot1xCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2025/12/09 4:17 p.m.1 views

CVE-2025-41752

An XSS vulnerability in pxcportSfp.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2025/12/09 4:17 p.m.1 views

CVE-2025-41750

An XSS vulnerability in pxcPortCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2025/12/09 4:17 p.m.3 views

CVE-2025-41746

An XSS vulnerability in pxcportSecCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-lev...

7.1CVSS0.00125EPSS
Exploits0References1
NVD
NVDadded 2025/12/09 4:17 p.m.1 views

CVE-2025-41745

An XSS vulnerability in pxcportCntr2.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-leve...

7.1CVSS0.00068EPSS
Exploits0References1
OSV
OSVadded 2025/12/09 4:17 p.m.0 views

CVE-2025-41747

An XSS vulnerability in pxcvlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to...

7.1CVSS5.9AI score
Exploits0References1
CVE
CVEadded 2025/12/09 8:10 a.m.9 views

CVE-2025-41745

CVE-2025-41745 describes an XSS in pxc_portCntr2.php that allows an unauthenticated attacker to trick an authenticated user into sending a manipulated POST to modify web-based management parameters. The vulnerability affects devices exposing the pxc_portCntr2.php page within their web management ...

7.1CVSS5.9AI score0.00068EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/09 8:10 a.m.2 views

CVE-2025-41745 Reflected XSS vulnerability in pxc_portCntr2.php

An XSS vulnerability in pxcportCntr2.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-leve...

7.1CVSS5.9AI score0.00068EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/09 8:9 a.m.2 views

CVE-2025-41746 Reflected XSS vulnerability in pxc_portSecCfg.php

An XSS vulnerability in pxcportSecCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-lev...

7.1CVSS5.9AI score0.00125EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/09 8:9 a.m.3 views

CVE-2025-41747 Reflected XSS vulnerability in pxc_vlanIntfCfg.php

An XSS vulnerability in pxcvlanIntfCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to send a manipulated POST request to the device in order to change parameters available via web based management WBM. The vulnerability does not provide access to...

7.1CVSS5.9AI score0.00125EPSS
Exploits0References1
CVE
CVEadded 2025/12/09 8:9 a.m.5 views

CVE-2025-41747

CVE-2025-41747 describes an unauthenticated XSS vulnerability in the web interface component pxc_vlanIntfCfg.php that can fool an authenticated user into sending a manipulated POST request to modify device configuration parameters available through the web-based management interface (WBM). The is...

7.1CVSS5.9AI score0.00125EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/12/09 8:9 a.m.26 views

CVE-2025-41748 Reflected XSS vulnerability in pxc_Dot1xCfg.php

An XSS vulnerability in pxcDot1xCfg.php can be used by an unauthenticated remote attacker to trick an authenticated user to click on the link provided by the attacker in order to change parameters available via web based management WBM. The vulnerability does not provide access to system-level...

7.1CVSS0.00125EPSS
Exploits0References1
Rows per page
Query Builder