CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-4284

Malware in sbrugna...

5.4CVSS6AI score0.00206EPSS

Exploits1References2

CNNVD•added 2023/05/09 12:0 a.m.•2 views

Chamilo LMS 跨站脚本漏洞

Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v.1.11.18. A local...

4.8CVSS5.8AI score0.00812EPSS

Exploits0References4

CNVD•added 2018/12/05 12:0 a.m.•2 views

ASUSTOR ADM Cross-Site Scripting Vulnerability

ASUSTOR ADM is an operating system from ASUSTOR dedicated to ASUSTOR NAS storage devices. A cross-site scripting vulnerability exists in the login page of ASUSTOR ADM version 3.1.1. A remote attacker can exploit this vulnerability to execute JavaScript code via the System Announcement feature...

5.4CVSS5.9AI score0.00206EPSS

Exploits1References1

OSV•added 2018/12/04 5:29 p.m.•2 views

CVE-2018-12310

Cross-site scripting in the Login page in ASUSTOR ADM version 3.1.1 allows attackers to execute JavaScript via the System Announcement feature...

5.4CVSS5.9AI score

Exploits0References1

NVD•added 2018/12/04 5:29 p.m.•10 views

CVE-2018-12310

Cross-site scripting in the Login page in ASUSTOR ADM version 3.1.1 allows attackers to execute JavaScript via the System Announcement feature...

5.4CVSS5.5AI score0.00206EPSS

Exploits1References1

Prion•added 2018/12/04 5:29 p.m.•19 views

Cross site scripting

Cross-site scripting in the Login page in ASUSTOR ADM version 3.1.1 allows attackers to execute JavaScript via the System Announcement feature...

3.5CVSS5.5AI score0.00206EPSS

Exploits1References1Affected Software1

CVE•added 2018/12/04 5:0 p.m.•42 views

CVE-2018-12310

CVE-2018-12310 describes a cross-site scripting vulnerability in ASUSTOR ADM (login page, version 3.1.1) where an attacker can inject JavaScript through the System Announcement feature. Affected component: ASUSTOR ADM login flow. Underlying issue: stored/reflected XSS in the login surface (detail...

5.4CVSS6.4AI score0.00206EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/12/04 5:0 p.m.•11 views

CVE-2018-12310

Cross-site scripting in the Login page in ASUSTOR ADM version 3.1.1 allows attackers to execute JavaScript via the System Announcement feature...

6.5AI score0.00206EPSS

Exploits1References1

Prion•added 2018/04/25 9:29 a.m.•14 views

Cross site scripting

An issue was discovered in WUZHI CMS 4.1.0. The "Extension Module - System Announcement" feature has Stored XSS via an announcement...

3.5CVSS4.8AI score0.00235EPSS

Exploits1References1Affected Software1

NVD•added 2018/04/25 9:29 a.m.•10 views

CVE-2018-10368

An issue was discovered in WUZHI CMS 4.1.0. The "Extension Module - System Announcement" feature has Stored XSS via an announcement...

4.8CVSS4.8AI score0.00235EPSS

Exploits1References1

Cvelist•added 2018/04/25 9:0 a.m.•8 views

CVE-2018-10368

An issue was discovered in WUZHI CMS 4.1.0. The "Extension Module - System Announcement" feature has Stored XSS via an announcement...

4.9AI score0.00235EPSS

Exploits1References1

Positive Technologies•added 2018/04/25 12:0 a.m.•2 views

PT-2018-9853 · Wuzhi · Wuzhi Cms

Name of the Vulnerable Software and Affected Versions: WUZHI CMS version 4.1.0 Description: An issue was discovered in the "Extension Module - System Announcement" feature, which has Stored XSS via an announcement. Recommendations: For WUZHI CMS version 4.1.0, consider disabling the "Extension...

4.8CVSS4.8AI score0.00235EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by