CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

TemaTres 3.0 is affected by a reflected XSS in the vocab/admin.php?doAdmin=bulkReplace endpoint via the replace_string or search_string parameters. The vulnerability stems from insufficient input handling, enabling injection of script/code that can impact user sessions through client-side executi...

6.1CVSS5.9AI score0.00718EPSS

Exploits0References2Affected Software1

Prion•added 2018/12/17 7:29 p.m.•14 views

Code injection

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

4.3CVSS5.9AI score0.02273EPSS

Exploits5References2Affected Software1

NVD•added 2018/12/17 7:29 p.m.•25 views

CVE-2018-19828

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

6.1CVSS6AI score0.02273EPSS

Exploits5References2

Cvelist•added 2018/12/17 6:0 p.m.•27 views

CVE-2018-19828

Artica Integria IMS 5.0.83 has XSS via the searchstring parameter...

6AI score0.02273EPSS

Exploits5References2

CVE•added 2018/12/17 6:0 p.m.•56 views

CVE-2018-19828

The CVE-2018-19828 entry affects Integria IMS 5.0.83, where the search_string parameter in index.php is exploitable for Reflected Cross-Site Scripting. The vulnerability is triggered via a GET request and has PoC payloads publicly demonstrated (e.g., payloads like ‘?>[removed]alert(...)’). Pat...

6.1CVSS5.9AI score0.02273EPSS

Exploits5References2Affected Software1

NVD•added 2007/10/12 11:17 p.m.•26 views

CVE-2007-5428

Cross-site scripting XSS vulnerability in UMI CMS allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter to the default URI in searchdo/...

4.3CVSS5.7AI score0.01511EPSS

Exploits1References5

Cvelist•added 2006/12/15 7:0 p.m.•28 views

CVE-2006-6589

Cross-site scripting XSS vulnerability in ecommerce/control/keywordsearch in the Apache Open For Business Project OFBiz and Opentaps 0.9.3 allows remote attackers to inject arbitrary web script or HTML via the SEARCHSTRING parameter, a different issue than CVE-2006-6587. NOTE: some of these detai...

5.6AI score0.02664EPSS

Exploits1References4

Cvelist•added 2006/08/07 7:0 p.m.•20 views

CVE-2006-4017

Cross-site scripting XSS vulnerability in the search module in Inter Network Marketing INM CMS G3 allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter...

5.7AI score0.01313EPSS

Exploits0References7

Cvelist•added 2005/05/10 4:0 a.m.•15 views

CVE-2004-1979

Cross-site scripting XSS vulnerability in dosearch.php in PROPS 0.6.1 allows remote attackers to inject arbitrary HTML or web script via the searchstring parameter...

5.8AI score0.01177EPSS

Exploits0References4

NVD•added 2004/04/30 4:0 a.m.•10 views

CVE-2004-1979

Cross-site scripting XSS vulnerability in dosearch.php in PROPS 0.6.1 allows remote attackers to inject arbitrary HTML or web script via the searchstring parameter...

4.3CVSS5.8AI score0.01177EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by