CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

EUVD•added 2025/10/03 8:7 p.m.•17 views

EUVD-2023-0315

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.01382EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-7374

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.01385EPSS

Exploits0References4

RedhatCVE•added 2025/05/23 4:44 a.m.•4 views

CVE-2023-22849

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.4 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in multiple features. Upgrade to Apache Sling App C...

6.1CVSS5.8AI score0.01445EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:49 a.m.•11 views

CVE-2022-46769

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.2 and prior may allow an authenticated remote attacker to perform a reflected cross-site scripting XSS attack in the site group feature. Upgrade to Apache Sling...

5.4CVSS5.7AI score0.01382EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:12 a.m.•7 views

CVE-2022-43670

An improper neutralization of input during web page generation 'Cross-site Scripting' CWE-79 vulnerability in Sling App CMS version 1.1.0 and prior may allow an authenticated remote attacker to perform a reflected cross site scripting XSS attack in the taxonomy management feature...

5.4CVSS5.7AI score0.01385EPSS

Exploits0References1

OSV•added 2023/02/04 9:30 p.m.•19 views

GHSA-RGHH-GHF7-7943 Sling App CMS Cross-site Scripting vulnerability

6.1CVSS5.9AI score0.01445EPSS

Exploits0References2

Github Security Blog•added 2023/02/04 9:30 p.m.•18 views

Sling App CMS Cross-site Scripting vulnerability

6.1CVSS5.6AI score0.01445EPSS

Exploits0References3Affected Software1

NVD•added 2023/02/04 9:15 p.m.•17 views

CVE-2023-22849

6.1CVSS6AI score0.01445EPSS

Exploits0References1

OSV•added 2023/02/04 9:15 p.m.•10 views

CVE-2023-22849

6.1CVSS6AI score

Exploits0References1

Prion•added 2023/02/04 9:15 p.m.•13 views

Cross site scripting

5.8CVSS5.9AI score0.01445EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/02/04 8:37 p.m.•5 views

CVE-2023-22849 Apache Sling App CMS: XSS in CMS Reference / UI Components

6.1AI score0.01445EPSS

Exploits0References1

CVE•added 2023/02/04 8:37 p.m.•69 views

CVE-2023-22849

The CVE-2023-22849 issue is a Cross-Site Scripting (XSS) vulnerability in Sling App CMS versions 1.1.4 and earlier, caused by improper input neutralization during web page generation. An authenticated remote attacker can perform a reflected XSS in multiple UI features. Remediation is to upgrade t...

6.1CVSS6AI score0.01445EPSS

Exploits0References1Affected Software1

NVD•added 2023/01/09 11:15 a.m.•41 views

CVE-2022-46769

5.4CVSS5.3AI score0.01382EPSS

Exploits0References1

Prion•added 2023/01/09 11:15 a.m.•15 views

Cross site scripting

4.9CVSS5.2AI score0.01382EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/01/09 10:14 a.m.•41 views

CVE-2022-46769 Apache Sling App CMS: XSS in CMS Site Group Detail

5.5AI score0.01382EPSS

Exploits0References1

CVE•added 2023/01/09 10:14 a.m.•69 views

CVE-2022-46769

CVE-2022-46769 describes an improper neutralization of input during web page generation (CWE-79) leading to a reflected Cross-site Scripting (XSS) vulnerability in Sling App CMS version 1.1.2 and earlier. The issue permits an authenticated remote attacker to perform a reflected XSS attack via the...

5.4CVSS5.2AI score0.01382EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/01/09 12:0 a.m.•30 views

Apache Sling 跨站脚本漏洞

Apache Sling is the United States Apache Apache Foundation of a Java platform for open source Web framework. It is designed to create content-centric applications on JSR-170 compliant content repositories such as Apache Jackrabbit. A cross-site scripting vulnerability exists in Sling App CMS...

5.4CVSS5.5AI score0.01382EPSS

Exploits0References2

Positive Technologies•added 2023/01/09 12:0 a.m.•8 views

PT-2023-15021 · Apache · Sling App Cms

Name of the Vulnerable Software and Affected Versions: Sling App CMS versions 1.1.2 and prior Description: The issue is related to an improper neutralization of input during web page generation, also known as Cross-site Scripting. This may allow an authenticated remote attacker to perform a...

5.4CVSS5AI score0.01382EPSS

Exploits0References6

OSV•added 2022/11/02 7:0 p.m.•15 views

GHSA-JJ93-4JR5-X45H Apache Sling App CMS vulnerable to Cross-site Scripting

A Cross-site Scripting vulnerability in Sling App CMS version 1.1.0 and prior may allow an authenticated remote attacker to perform a reflected cross site scripting XSS attack in the taxonomy management feature...

5.4CVSS5.2AI score0.01385EPSS

Exploits0References4

NVD•added 2022/11/02 1:15 p.m.•12 views

CVE-2022-43670

5.4CVSS0.01385EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by