CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/10/14 9:46 a.m.•1 views

CVE-2025-11184

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI =v2025.03.31 allows an authorized attacker to plant arbitrary JavaScript code in the page...

6.9CVSS6.7AI score0.00015EPSS

Exploits0References1

EUVD•added 2025/10/13 12:31 p.m.•1 views

EUVD-2025-34061

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI =v2025.03.31 allows an authorized attacker to plant arbitrary JavaScript code in the page...

6.9CVSS6.2AI score0.00015EPSS

Exploits0References2

NVD•added 2025/10/13 10:15 a.m.•1 views

CVE-2025-11184

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI =v2025.03.31 allows an authorized attacker to plant arbitrary JavaScript code in the page...

6.9CVSS0.00015EPSS

Exploits0References1

Vulnrichment•added 2025/10/13 9:20 a.m.•1 views

CVE-2025-11184 Cross-Site Scripting Vulnerability in QWC2 Registration GUI

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI =v2025.03.31 allows an authorized attacker to plant arbitrary JavaScript code in the page...

6.9CVSS6.4AI score0.00015EPSS

Exploits0References1

Cvelist•added 2025/10/13 9:20 a.m.•5 views

CVE-2025-11184 Cross-Site Scripting Vulnerability in QWC2 Registration GUI

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI =v2025.03.31 allows an authorized attacker to plant arbitrary JavaScript code in the page...

6.9CVSS0.00015EPSS

Exploits0References1

CVE•added 2025/10/13 9:20 a.m.•4 views

CVE-2025-11184

CVE-2025-11184 affects QGIS QWC2 Registration GUI up to version 2025.03.31. It enables an authorized attacker to inject arbitrary JavaScript (XSS) into the page, with potential impact to Confidentiality (High) and Integrity (Low) per CVSS. Remediation: upgrade to a version later than 2025.03.31 (...

6.9CVSS6.4AI score0.00015EPSS

Exploits0References1

CNNVD•added 2025/10/13 12:0 a.m.•1 views

QGIS QWC2 Registration GUI 安全漏洞

The QGIS QWC2 Registration GUI is an optional application of the Web Front End Client Framework from the QGIS organization. A security vulnerability exists in QGIS QWC2 Registration GUI v2025.03.31 and earlier versions, which originates from an authorized attacker who can plant arbitrary JavaScri...

6.9CVSS6.2AI score0.00015EPSS

Exploits0References1

Positive Technologies•added 2025/10/13 12:0 a.m.•2 views

PT-2025-41780

Name of the Vulnerable Software and Affected Versions QGIS QWC2 Registration GUI versions through 2025.03.31 Description A cross-site scripting issue exists in QGIS QWC2 Registration GUI. An authorized attacker can inject arbitrary JavaScript code into the page. Recommendations Update QGIS QWC2...

6.9CVSS6.1AI score0.00015EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by