Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:46 p.m.10 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6.1CVSS6.1AI score0.01012EPSS
Exploits1References1
NVD
NVD
added 2022/10/13 2:15 p.m.17 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.5CVSS0.00298EPSS
Exploits1References1
NVD
NVD
added 2022/10/13 2:15 p.m.26 views

CVE-2022-41473

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

6.1CVSS0.01012EPSS
Exploits1References1
Prion
Prion
added 2022/10/13 2:15 p.m.14 views

Cross site scripting

RPCMS v3.0.2 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Search function...

5.8CVSS6AI score0.01012EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/13 2:15 p.m.12 views

Cross site request forgery (csrf)

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

4.3CVSS6.7AI score0.00298EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/13 2:15 p.m.14 views

Cross site request forgery (csrf)

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

6.8CVSS8.8AI score0.00375EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/10/13 12:0 a.m.70 views

CVE-2022-41473

RPCMS 3.0.2 contains a reflected Cross-Site Scripting (XSS) vulnerability in the Search function. An attacker can inject arbitrary script in the victim’s browser, potentially stealing cookie-based credentials and enabling additional browser-based attacks. Affected product: RPCMS 3.0.2; vulnerabil...

6.1CVSS6AI score0.01012EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.19 views

CVE-2022-41474

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily change the password of any account...

6.9AI score0.00298EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.9 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

8.9AI score0.00375EPSS
Exploits1References1
CVE
CVE
added 2022/10/13 12:0 a.m.42 views

CVE-2022-41475

RPCMS v3.0.2 is affected by a Cross-Site Forgery (CSRF) vulnerability that allows attackers to arbitrarily add an administrator account. The incident is documented across multiple sources (NVD CVE-2022-41475, Red Hat, PRion, CNNVD, CVE listings) with a common description. The CVSS v3.1 base score...

8.8CVSS8.8AI score0.00375EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.24 views

CVE-2022-41475

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily add an administrator account...

9AI score0.00375EPSS
Exploits1References1
CVE
CVE
added 2022/10/13 12:0 a.m.46 views

CVE-2022-41474

RPCMS v3.0.2 is affected by a Cross-Site Request Forgery (CSRF) that allows attackers to arbitrarily change the password of any account. The CVE entry documents this CSRF issue as the underlying vulnerability; there are no public details in the provided documents about the exact root cause, affec...

6.5CVSS6.7AI score0.00298EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder