CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2025/10/13 9:30 a.m.•2 views

EUVD-2025-34046

A stored Cross-site Scripting XSS vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6AI score0.00028EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-48772

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00948EPSS

Exploits0References1

RedhatCVE•added 2025/06/01 2:47 p.m.•4 views

CVE-2025-4989

A stored Cross-site Scripting XSS vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00153EPSS

Exploits0References1

RedhatCVE•added 2025/06/01 2:47 p.m.•3 views

CVE-2025-4983

A stored Cross-site Scripting XSS vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00153EPSS

Exploits0References1

NVD•added 2025/05/30 3:15 p.m.•9 views

CVE-2025-4989

8.7CVSS0.00153EPSS

Exploits0References1

CVE•added 2025/05/30 2:19 p.m.•37 views

CVE-2025-4984

CVE-2025-4984 describes a stored XSS vulnerability in City Discover within City Referential Manager on Release 3DEXPERIENCE R2025x. The issue affects City Discover/City Referential Manager components and could allow an attacker to execute arbitrary script code in a user’s browser session. The lin...

8.7CVSS6.1AI score0.00153EPSS

Exploits1References1

Cvelist•added 2025/05/30 2:16 p.m.•12 views

CVE-2025-4990 Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00153EPSS

Exploits0References1

RedhatCVE•added 2025/03/19 2:20 p.m.•5 views

CVE-2025-0599

A stored Cross-site Scripting XSS vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00352EPSS

Exploits0References1

NVD•added 2025/03/17 2:15 p.m.•6 views

CVE-2025-0600

A stored Cross-site Scripting XSS vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00352EPSS

Exploits0References1

Cvelist•added 2025/03/17 1:49 p.m.•8 views

CVE-2025-0827 Stored Cross-site Scripting (XSS) vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00338EPSS

Exploits0References1

Vulnrichment•added 2025/03/17 1:49 p.m.•4 views

CVE-2025-0601 Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS7.8AI score0.00352EPSS

Exploits0References1

Cvelist•added 2025/03/17 1:47 p.m.•7 views

CVE-2025-0596 Stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00352EPSS

Exploits0References1

Vulnrichment•added 2024/12/16 3:6 p.m.•8 views

CVE-2024-12089 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00799EPSS

Exploits0References1

Positive Technologies•added 2024/12/16 12:0 a.m.•3 views

PT-2024-17434 · Ds Systemes · Enovia Collaborative Industry Innovator

Name of the Vulnerable Software and Affected Versions: ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x Description: A stored Cross-site Scripting XSS issue allows an attacker to execute arbitrary script code in a user's browser session. This enables the attacker to perform...

8.7CVSS6.6AI score0.01463EPSS

Exploits0References4

Positive Technologies•added 2024/10/16 12:0 a.m.•1 views

PT-2024-38766 · Dsy · 3Dswym

Name of the Vulnerable Software and Affected Versions: 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x Description: The issue is an authorization bypass through a user-controlled key vulnerability. This allows an authenticated attacker to access some unauthorized data. The vulnerability is...

7.7CVSS6.7AI score0.00036EPSS

Exploits0References7

CVE•added 2024/09/19 3:18 p.m.•38 views

CVE-2024-7736

The CVE-2024-7736 entry affects ENOVIA Collaborative Industry Innovator (3DEXPERIENCE R2022x through R2024x). The issue is a reflected Cross-site Scripting (XSS) vulnerability exploiting a JavaScript/script rendering pathway in the browser, enabling arbitrary script execution in a user session. T...

8.7CVSS8AI score0.00739EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/09/02 11:48 a.m.•12 views

CVE-2024-7938 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00948EPSS

Exploits0References1

CVE•added 2024/08/20 1:45 p.m.•45 views

CVE-2024-6378

CVE-2024-6378 is a reflected XSS vulnerability in ENOVIA Collaborative Industry Innovator affecting 3DEXPERIENCE R2022x through R2024x. The connected sources clearly identify the affected product and the underlying issue: a reflected cross-site scripting flaw that could cause arbitrary script exe...

8.7CVSS7.9AI score0.01269EPSS

Exploits0References1Affected Software1

Prion•added 2023/08/28 4:15 p.m.•25 views

Command injection

An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution...

6.5CVSS9AI score0.00327EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/08/28 3:37 p.m.•14 views

CVE-2023-1997 OS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x

8.8CVSS7.6AI score0.00327EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by