CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

RedhatCVE•added 2026/03/26 3:0 p.m.•0 views

CVE-2026-33135

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting XSS vulnerability in the novomemorandoo.php endpoint. An attacker can inject arbitrary JavaScript into the sccs GET parameter, which is directly echoed into the HTML response without...

9.3CVSS6AI score0.00052EPSS

Exploits1References1

NVD•added 2026/03/20 11:18 a.m.•3 views

CVE-2026-33135

9.3CVSS0.00052EPSS

Exploits1References3

EUVD•added 2026/03/20 10:38 a.m.•3 views

EUVD-2026-13680

9.3CVSS6AI score0.00052EPSS

Exploits1References3

CVE•added 2026/03/20 10:38 a.m.•4 views

CVE-2026-33135

WeGIA is a web manager for charitable institutions. Affected versions: 3.6.6 and earlier. The issue is a Reflected Cross‑Site Scripting (XSS) in the endpoint /html/memorando/novo_memorandoo.php, where the GET parameter sccs is echoed into the HTML response without sanitization when msg equals 'su...

9.3CVSS6AI score0.00052EPSS

Exploits1References3Affected Software1

OSV•added 2026/03/20 10:38 a.m.•1 views

CVE-2026-33135 WeGIA has Reflected Cross-Site Scripting (XSS) in `novo_memorandoo.php` via `sccs` parameter

9.3CVSS6.1AI score0.00052EPSS

Exploits1References5

ATTACKERKB•added 2026/03/20 10:38 a.m.•4 views

CVE-2026-33135

9.3CVSS6AI score0.00052EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/03/20 10:38 a.m.•20 views

CVE-2026-33135 WeGIA has Reflected Cross-Site Scripting (XSS) in `novo_memorandoo.php` via `sccs` parameter

9.3CVSS0.00052EPSS

Exploits1References3

Positive Technologies•added 2026/03/20 12:0 a.m.•2 views

PT-2026-26606

WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting XSS vulnerability in the novo memorandoo.php endpoint. An attacker can inject arbitrary JavaScript into the sccs GET parameter, which is directly echoed into the HTML response withou...

9.3CVSS6AI score0.00052EPSS

Exploits1References9

Cvelist•added 2025/08/21 4:59 p.m.•7 views

CVE-2025-57763 Cross-Site Scripting (XSS) Reflected in 'insere_despacho.php' parameter 'sccs'

WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Reflected Cross-Site Scripting XSS vulnerability in the inseredespacho.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the cpf sccs. This vulnerability is fixed...

6.4CVSS0.00064EPSS

Exploits1References1

OSV•added 2025/08/21 4:59 p.m.•3 views

CVE-2025-57763 Cross-Site Scripting (XSS) Reflected in 'insere_despacho.php' parameter 'sccs'

6.4CVSS5.7AI score0.00064EPSS

Exploits1References3

Vulnrichment•added 2025/08/21 4:59 p.m.•4 views

CVE-2025-57763 Cross-Site Scripting (XSS) Reflected in 'insere_despacho.php' parameter 'sccs'

6.4CVSS5.8AI score0.00064EPSS

Exploits1References1

CNNVD•added 2025/08/21 12:0 a.m.•2 views

WeGIA 安全漏洞

WeGIA is a web manager for welfare organizations by the individual developer Nilson Lazarin. A security vulnerability exists in WeGIA versions prior to 3.4.7, which stems from the presence of reflective cross-site scripting in the cpf sccs parameter in the inseredespacho.php endpoint, which could...

6.4CVSS5.9AI score0.00064EPSS

Exploits1References2

RedHat Linux•added 2024/03/28 8:50 p.m.•35 views

Important: Red Hat Security Advisory: ACS 4.4 enhancement and security update

Important: Updated images are now available for Red Hat Advanced Cluster Security. Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes new features and bug fixes. This release includes the following features and updates: New Compliance capabilities...

9.1CVSS6.6AI score0.04986EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 6:8 a.m.•0 views

SUSE CVE-2008-1694

vcdiff in Emacs 20.7 to 22.1.50, when used with SCCS, allows local users to overwrite arbitrary files via a symlink attack on temporary files...

4.6CVSS6.7AI score0.00046EPSS

Exploits1References3

Rapid7 Blog•added 2021/09/21 12:53 p.m.•40 views

Rapid7 Statement on the New Standard Contractual Clauses for International Transfers of Personal Data

Context: On June 4, 2021, the European Commission published new standard contractual clauses “New SCCs". Under the General Data Protection Regulation “GDPR", transfers of personal data to countries outside of the European Economic Area EEA must meet certain conditions. The New SCCs are an approve...

0.5AI score

Exploits0

OpenVAS•added 2009/04/09 12:0 a.m.•24 views

Mandriva Update for emacs MDVSA-2008:096 (emacs)

Check for the Version of emacs OpenVAS Vulnerability Test Mandriva Update for emacs MDVSA-2008:096 emacs Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.6CVSS0.00046EPSS

Exploits1References2

Tenable Nessus•added 2008/05/09 12:0 a.m.•41 views

Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : emacs21, emacs22 vulnerabilities (USN-607-1)

It was discovered that Emacs did not account for precision when formatting integers. If a user were tricked into opening a specially crafted file, an attacker could cause a denial of service or possibly other unspecified actions. This issue does not affect Ubuntu 8.04. CVE-2007-6109 Steve Grubb...

10CVSS7.7AI score0.02999EPSS

Exploits1References3