EUVD-2025-27145

Malicious code in bioql PyPI...

CVE-2025-55998

A cross-site scripting XSS vulnerability in Smart Search & Filter Shopify and BigCommerce apps allows a remote attacker to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into several filter parameter...

CVE-2025-55998

A cross-site scripting XSS vulnerability in Smart Search & Filter Shopify and BigCommerce apps allows a remote attacker to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into several filter parameter...

CVE-2025-55998

CVE-2025-55998 is an XSS in Mezereon Smart Search & Filter apps for Shopify and BigCommerce. The vulnerability stems from lack of input sanitization in filter parameters, allowing remote attackers to inject JavaScript (e.g., via mz.color or similar filters) and execute in a user’s browser. Impact...

Mezereon Smart Search & Filter Shopify 安全漏洞

Mezereon Smart Search & Filter Shopify is a filter software from Mezereon USA. A security vulnerability exists in Mezereon Smart Search & Filter Shopify version 1.0, which stems from vulnerability to cross-site scripting attacks...

PT-2025-36477

Name of the Vulnerable Software and Affected Versions: Smart Search & Filter Shopify App version 1.0 Description: A cross-site scripting XSS vulnerability exists in Smart Search & Filter Shopify App. A remote attacker can execute arbitrary JavaScript in a user's web browser by including a malicio...

Exploit for CVE-2025-55998

CVE-2025-55998 Summary | Vulnerability Details | CVE-2025...

CVE-2022-46332

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

Cross site scripting

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

CVE-2022-46332

CVE-2022-46332 affects Proofpoint Enterprise Protection (PPS/PoD) with a stored cross-site scripting (XSS) vulnerability in the Admin Smart Search feature. Exploitation requires user interaction and anonymous access, enabling an attacker to gain admin privileges within the UI. Affected versions: ...

CVE-2022-46332 Proofpoint Enterprise Protection (PPS/PoD) XSS in "Attachment Names"

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

PT-2022-27824 · Proofpoint · Proofpoint Enterprise Protection

Name of the Vulnerable Software and Affected Versions: Proofpoint Enterprise Protection PPS/PoD versions 8.19.0 and below Description: The Admin Smart Search feature in Proofpoint Enterprise Protection contains a stored cross-site scripting issue that allows an anonymous email sender to gain admi...

jobs2.smartsearchonline.com Cross Site Scripting vulnerability OBB-2894103

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

hopkinsallchildrens.org XSS vulnerability

Open Bug Bounty ID: OBB-636075 Description| Value ---|--- Affected Website:| hopkinsallchildrens.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

emons.co.kr XSS vulnerability

Open Bug Bounty ID: OBB-481591 Description| Value ---|--- Affected Website:| emons.co.kr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure based o...

giant-korea.com XSS vulnerability

Open Bug Bounty ID: OBB-372554 Description| Value ---|--- Affected Website:| giant-korea.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

shaadi.com XSS vulnerability

Vulnerable URL: https://www.shaadi.com/search?searchtype=smartsearch Details: Description| Value ---|--- Patched:| No Latest check for patch:| 23.08.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2383 VIP website status:| Yes Check shaadi.com SSL connection:|...

Smart Search & Web Browser - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Smart Search & Web Browser published at the 'play' market has multiple vulnerabilities...

PHP Matrimonial Script 3.0 - SQL Injection

PHP Matrimonial Script 3.0 - SQL Injection Exploit Title: Matrimonial Script v3.0 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software : http://www.phpscriptsmall.com/product/matrimonial-script/ Demo: http://74.124.215.220/matriialscrip/...

Multireligion Responsive Matrimonial Script 4.7.1 SQL Injection

Exploit Title: Multireligion Responsive Matrimonial Script v4.7.1 - SQL Injection Google Dork: N/A Date: 06.03.2017 Vendor Homepage: http://www.phpscriptsmall.com/ Software : http://www.phpscriptsmall.com/product/multireligion-responsive-matrimonial/ Demo:...