CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CVE•added 2026/03/02 1:2 a.m.•4 views

CVE-2026-3403

Affected software: PHPGurukul Student Record Management System 1.0. Vulnerability: cross-site scripting via /edit-subject.php when the Subject parameter is manipulated. Root cause: unknown processing of the file leads to XSS. Impact: remote attacker can induce script execution; CVSS metrics indic...

4.8CVSS4.5AI score0.00044EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2026/01/12 12:0 a.m.•3 views

PT-2026-1800

Name of the Vulnerable Software and Affected Versions WorkDo eCommerceGo affected versions not specified Description A stored Cross-Site Scripting XSS issue exists due to insufficient validation of user-supplied data. The issue is triggered by sending a POST request to the /store-ticket API...

5.1CVSS5.9AI score0.0009EPSS

Exploits0References6

RedhatCVE•added 2026/01/09 10:51 a.m.•2 views

CVE-2022-42099

KLiK SocialMediaWebsite Version 1.0.1 has XSS vulnerabilities that allow attackers to store XSS via location Forum Subject input...

5.4CVSS6AI score0.00323EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-45185

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00323EPSS

Exploits1References2

CNNVD•added 2024/03/01 12:0 a.m.•1 views

Pkp Ojs Cross Site Scripting Vulnerability

affinitybridge Pkp Ojs is an open source journal publication management software system from affinitybridge. A cross-site scripting vulnerability exists in Pkp Ojs version v3.3, which originates from a vulnerability that allows an attacker to execute arbitrary web script or HTML via the Input...

6.1CVSS6AI score0.00212EPSS

Exploits1References3

NVD•added 2022/11/29 4:15 a.m.•7 views

CVE-2022-42099

KLiK SocialMediaWebsite Version 1.0.1 has XSS vulnerabilities that allow attackers to store XSS via location Forum Subject input...

5.4CVSS0.00323EPSS

Exploits1References2

CNNVD•added 2022/11/29 12:0 a.m.•1 views

KLiK SocialMediaWebsite 跨站脚本漏洞

KLiK SocialMediaWebsite is a simple PHP-based social media website by the individual developer Muhammad Saad. A security vulnerability exists in KLiK SocialMediaWebsite version 1.0.1, which stems from the presence of XSS, allowing an attacker to store XSS via Forum Subject input...

5.4CVSS5.7AI score0.00323EPSS

Exploits1References3

Cvelist•added 2022/11/29 12:0 a.m.•10 views

CVE-2022-42099

KLiK SocialMediaWebsite Version 1.0.1 has XSS vulnerabilities that allow attackers to store XSS via location Forum Subject input...

5.6AI score0.00323EPSS

Exploits1References2

Vulnrichment•added 2022/11/29 12:0 a.m.•4 views

CVE-2022-42099

KLiK SocialMediaWebsite Version 1.0.1 has XSS vulnerabilities that allow attackers to store XSS via location Forum Subject input...

6.1AI score0.00323EPSS

Exploits1References2

CVE•added 2022/11/29 12:0 a.m.•45 views

CVE-2022-42099

The CVE-2022-42099 entry concerns KLiK SocialMediaWebsite version 1.0.1 with stored XSS via the Forum Subject input. The root cause is an XSS vulnerability in the forum subject handling that allows injected script to be stored and later executed by other users. Impact is described as enabling sto...

5.4CVSS5.4AI score0.00323EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2022/11/29 12:0 a.m.•1 views

PT-2022-26250 · Unknown · Klik Socialmediawebsite

Name of the Vulnerable Software and Affected Versions: KLiK SocialMediaWebsite version 1.0.1 Description: The issue allows attackers to store XSS via the location Forum Subject input, potentially affecting user security. Recommendations: For KLiK SocialMediaWebsite version 1.0.1, consider...

5.4CVSS5.2AI score0.00323EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by