CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in Creativeitem Atlas Business Directory Listing 2.13 and classified as problematic. Affected by this issue is some unknown functionality of the file /home/search. The manipulation of the argument searchstring leads to cross site scripting. The attack may be launched...

4CVSS6AI score0.00075EPSS

Exploits0References2Affected Software1

CVE•added 2023/07/19 4:0 a.m.•41 views

CVE-2023-3756

CVE-2023-3756 affects Creativeitem Atlas Business Directory Listing 2.13. The vulnerability arises from user-controlled input in the /home/search function, where manipulating the argument (notably the search_string) triggers cross-site scripting. Descriptions across multiple feeds consistently id...

6.1CVSS4.4AI score0.00075EPSS

Exploits0References2Affected Software1

Prion•added 2019/12/13 4:15 p.m.•9 views

Cross site scripting

TemaTres 3.0 has reflected XSS via the replacestring or searchstring parameter to the vocab/admin.php?doAdmin=bulkReplace URI...

4.3CVSS5.9AI score0.00328EPSS

Exploits0References2Affected Software1

CVE•added 2019/12/13 3:59 p.m.•38 views

CVE-2019-14344

TemaTres 3.0 is affected by a reflected XSS in the vocab/admin.php?doAdmin=bulkReplace endpoint via the replace_string or search_string parameters. The vulnerability stems from insufficient input handling, enabling injection of script/code that can impact user sessions through client-side executi...

6.1CVSS5.9AI score0.00328EPSS

Exploits0References2Affected Software1

NVD•added 2018/12/17 7:29 p.m.•9 views

CVE-2018-19828

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

6.1CVSS6AI score0.00651EPSS

Exploits5References2

Prion•added 2018/12/17 7:29 p.m.•11 views

Code injection

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

4.3CVSS5.9AI score0.00651EPSS

Exploits5References2Affected Software1

Cvelist•added 2018/12/17 6:0 p.m.•11 views

CVE-2018-19828

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

6AI score0.00651EPSS

Exploits5References2

CVE•added 2018/12/17 6:0 p.m.•50 views

CVE-2018-19828

The CVE-2018-19828 entry affects Integria IMS 5.0.83, where the search_string parameter in index.php is exploitable for Reflected Cross-Site Scripting. The vulnerability is triggered via a GET request and has PoC payloads publicly demonstrated (e.g., payloads like ‘?>[removed]alert(...)’). Pat...

6.1CVSS5.9AI score0.00651EPSS

Exploits5References2Affected Software1

NVD•added 2007/10/12 11:17 p.m.•17 views

CVE-2007-5428

Cross-site scripting XSS vulnerability in UMI CMS allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter to the default URI in searchdo/...

4.3CVSS5.7AI score0.01941EPSS

Exploits1References5

CVE•added 2006/12/27 11:0 p.m.•46 views

CVE-2006-6769

CVE-2006-6769 applies to PHP Live! 3.2.2 and earlier, with multiple XSS flaws. Vulnerable components/files include transcripts.php (search_string parameter), index.php (l parameter), phplive/index.php (login field), and phplive/message_box.php (deptid and x parameters). Exploits describe arbitrar...

6.8CVSS5.7AI score0.01535EPSS

Exploits4References5Affected Software1

Cvelist•added 2006/12/15 7:0 p.m.•18 views

CVE-2006-6589

Cross-site scripting XSS vulnerability in ecommerce/control/keywordsearch in the Apache Open For Business Project OFBiz and Opentaps 0.9.3 allows remote attackers to inject arbitrary web script or HTML via the SEARCHSTRING parameter, a different issue than CVE-2006-6587. NOTE: some of these detai...

5.6AI score0.07443EPSS

Exploits1References4

Cvelist•added 2006/08/07 7:0 p.m.•11 views

CVE-2006-4017

Cross-site scripting XSS vulnerability in the search module in Inter Network Marketing INM CMS G3 allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter...

5.7AI score0.00527EPSS

Exploits0References7

Cvelist•added 2005/05/10 4:0 a.m.•13 views

CVE-2004-1979

Cross-site scripting XSS vulnerability in dosearch.php in PROPS 0.6.1 allows remote attackers to inject arbitrary HTML or web script via the searchstring parameter...

5.8AI score0.00346EPSS

Exploits0References4

NVD•added 2004/04/30 4:0 a.m.•7 views

CVE-2004-1979

Cross-site scripting XSS vulnerability in dosearch.php in PROPS 0.6.1 allows remote attackers to inject arbitrary HTML or web script via the searchstring parameter...

4.3CVSS5.8AI score0.00346EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by