CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

12 matches found

Positive Technologies•added 2 days ago•9 views

PT-2026-51158

Name of the Vulnerable Software and Affected Versions Capgo versions prior to 12.128.2 Description An open redirect issue exists in the 'stripe portal' and 'stripe checkout' endpoints. These endpoints accept unvalidated callbackUrl, successUrl, and cancelUrl parameters. Authenticated attackers ca...

4.8CVSS5.9AI score

Exploits0References7

RedhatCVE•added 2025/05/22 8:35 p.m.•3 views

CVE-2021-34370

Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable security flags and we are unable to reproduce them with the available information...

6.1CVSS6.4AI score0.09996EPSS

Exploits4References1

OSV•added 2024/08/20 8:11 p.m.•4 views

CVE-2024-41658 GHSL-2024-036: Reflected XSS in QrCodePage.js

Casdoor is a UI-first Identity and Access Management IAM / Single-Sign-On SSO platform. In Casdoor 1.577.0 and earlier, he purchase URL that is created to generate a WechatPay QR code is vulnerable to reflected XSS. When purchasing an item through casdoor, the product page allows you to pay via...

6.1CVSS6.2AI score0.00423EPSS

Exploits1References4

Snyk•added 2023/10/12 12:0 a.m.•1 views

Cross-site Scripting (XSS)

Overview johnpbloch/wordpress-core is a web software you can use to create a website or blog. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the successurl and rejecturl parameters when requesting application passwords. An attacker can inject arbitrary web script...

6.1CVSS5.3AI score

Exploits0References2

OSV•added 2023/08/22 9:30 p.m.•39 views

GHSA-5PV6-RPRW-82WV Horizon Web Dashboard Open Redirect vulnerability

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

6.1CVSS6AI score0.00674EPSS

Exploits0References8

ATTACKERKB•added 2023/08/22 7:16 p.m.•2 views

CVE-2022-45582

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

6.1CVSS6.4AI score0.00674EPSS

Exploits0References5

NVD•added 2023/08/22 7:16 p.m.•24 views

CVE-2022-45582

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

6.1CVSS6.2AI score0.00674EPSS

Exploits0References4

OSV•added 2023/08/22 7:16 p.m.•2 views

DEBIAN-CVE-2022-45582

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

6.1CVSS7AI score0.00674EPSS

Exploits0References1

Prion•added 2023/08/22 7:16 p.m.•28 views

Open redirect

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

5.8CVSS6.2AI score0.00674EPSS

Exploits0References4Affected Software1

PyPA•added 2023/08/22 7:16 p.m.•6 views

PYSEC-2023-153

Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the successurl parameter...

6.1CVSS7AI score0.00674EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2023/08/22 12:0 a.m.•4 views

PT-2023-14709 · Unknown · Horizon Web Dashboard

Name of the Vulnerable Software and Affected Versions: Horizon Web Dashboard versions 19.4.0 through 20.1.4 Description: The issue is related to an Open Redirect vulnerability via the success url parameter. This allows for potential redirection to unintended websites. Recommendations: For Horizon...

6.1CVSS5.9AI score0.00674EPSS

Exploits0References23

Hacker One•added 2022/03/08 4:12 a.m.•25 views

pixiv: XSS Reflected at https://sketch.pixiv.net/ Via `next_url`

Hi, I Found XSS Reflected at https://sketch.pixiv.net/ Via Success URL Follow Me : Steps : 1. Open the URL below: https://sketch.pixiv.net/resignrequest/success?nexturl=javascript%3Aalert%2F%2Fdocument.domain 2. Pop ups appear : Impact If an attacker can control a script that is executed in the...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by