CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2014-3921

Malware in sbrugna...

4.3CVSS6.4AI score0.00225EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2022-5442

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00189EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 8:36 a.m.•7 views

CVE-2019-14315

A cross-site scripting XSS vulnerability in upload.php in SunHater KCFinder 3.20-test1, 3.20-test2, 3.12, and earlier allows remote attackers to inject arbitrary web script or HTML via the CKEditorFuncNum parameter...

6.1CVSS5.6AI score0.00189EPSS

Exploits1References1

Github Security Blog•added 2022/05/24 4:51 p.m.•26 views

SunHater KCFinder cross-site scripting (XSS) vulnerability in upload.php

6.1CVSS5.8AI score0.00189EPSS

Exploits1References4Affected Software1

OSV•added 2022/05/24 4:51 p.m.•15 views

GHSA-VWH5-78JC-HPJX SunHater KCFinder cross-site scripting (XSS) vulnerability in upload.php

6.1CVSS5.9AI score0.00189EPSS

Exploits1References4

CNVD•added 2019/07/29 12:0 a.m.•2 views

SunHater KCFinder Cross-Site Scripting Vulnerability

SunHater KCFinder is an open source file manager. A cross-site scripting vulnerability exists in SunHater KCFinder. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.00189EPSS

Exploits1References1

NVD•added 2019/07/28 1:15 a.m.•7 views

CVE-2019-14315

6.1CVSS6AI score0.00189EPSS

Exploits1References1

OSV•added 2019/07/28 1:15 a.m.•14 views

CVE-2019-14315

6.1CVSS5.7AI score

Exploits0References1

Prion•added 2019/07/28 1:15 a.m.•14 views

Cross site scripting

4.3CVSS5.9AI score0.00189EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/07/28 12:23 a.m.•12 views

CVE-2019-14315

6AI score0.00189EPSS

Exploits1References1

CVE•added 2019/07/28 12:23 a.m.•74 views

CVE-2019-14315

The CVE-2019-14315 entry documents a cross-site scripting (XSS) vulnerability in SunHater KCFinder where upload.php is affected in versions 3.20-test1, 3.20-test2, 3.12 and earlier. The root cause involves improper handling of input that allows an attacker to inject arbitrary web script or HTML v...

6.1CVSS5.9AI score0.00189EPSS

Exploits1References1Affected Software1

NVD•added 2014/12/03 1:59 a.m.•9 views

CVE-2014-3988

Cross-site scripting XSS vulnerability in index.php in SunHater KCFinder 3.11 and earlier allows remote attackers to inject arbitrary web script or HTML via 1 file or 2 directory folder name of an uploaded file...

4.3CVSS5.7AI score0.00225EPSS

Exploits1References1

Prion•added 2014/12/03 1:59 a.m.•11 views

Cross site scripting

4.3CVSS6.1AI score0.00225EPSS

Exploits1References1Affected Software1

CVE•added 2014/12/03 1:0 a.m.•37 views

CVE-2014-3988

CVE-2014-3988 is an XSS vulnerability in SunHater KCFinder 3.11 and earlier, exploitable via the file or directory name of an uploaded file in index.php. The published description states that remote attackers can inject arbitrary web script or HTML. Affected software/versions are explicitly SunHa...

4.3CVSS5.8AI score0.00225EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by