CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2025/12/09 1:29 a.m.•6 views

CVE-2022-50671

CVE-2022-50671 : In the Linux kernel, the RDMA/rxe path had a NULL pointer dereference during rxe_queue_init failure. Specifically, when rxe_qp_init_req fails, qp->req.task.func and qp->req.task.arg may remain uninitialized. If qp creation subsequently fails, rxe_create_qp invokes rxe_qp_do...

6.1AI score0.00061EPSS

Exploits0References9

EUVD•added 2025/10/22 3:31 p.m.•2 views

EUVD-2023-60000

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...

4.7AI score0.00044EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-8845

Malware in sbrugna...

3.5CVSS6.4AI score0.00299EPSS

Exploits2References6

Prion•added 2023/05/04 8:15 p.m.•14 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in TotalJS messenger commit b6cf1c9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the private task field...

4.9CVSS5.2AI score0.00839EPSS

Exploits1References3

CNNVD•added 2023/05/04 12:0 a.m.•2 views

TotalJS messenger 跨站脚本漏洞

TotalJS messenger is a Node.js open source Slack alternative to the Total.js Platform open source. A security vulnerability exists in TotalJS messenger. An attacker can exploit this vulnerability to execute arbitrary web script or HTML via a specially crafted payload injected into a private task...

5.4CVSS6.1AI score0.00839EPSS

Exploits1References5

Positive Technologies•added 2023/05/04 12:0 a.m.•4 views

PT-2023-22539 · Unknown · Totaljs Messenger

Name of the Vulnerable Software and Affected Versions: TotalJS messenger affected versions not specified Description: A stored cross-site scripting XSS vulnerability in TotalJS messenger allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the private task...

5.4CVSS5.3AI score0.00839EPSS

Exploits1References7

Cvelist•added 2023/05/04 12:0 a.m.•11 views

CVE-2023-30097

5.4AI score0.00839EPSS

Exploits1References3

Huntr•added 2022/06/04 8:32 a.m.•21 views

Stored XSS in Task field

Description The application Titra is vulnerable to Stored XSS in Task field. Steps To Reproduce 1. Click on add Track button 2. In the Task field enter the payload " 3. click save 4. Now Click on Details 5. XSS will be triggered Image PoC...

3.5CVSS0.2AI score0.00282EPSS

Exploits1

OSV•added 2021/01/20 4:15 p.m.•1 views

CVE-2020-35272

Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting XSS in the Admin Portal in the Task and Description fields...

4.8CVSS5.8AI score

Exploits0References1

CNNVD•added 2021/01/20 12:0 a.m.•2 views

SourceCodester Employee Performance Evaluation System Cross-Site Scripting Vulnerability

SourceCodester Employee Performance Evaluation System is a Php-based website builder for employee performance management from SourceCodester, Inc. A cross-site scripting vulnerability exists in Employee Performance Evaluation System that originates in the Task and Description fields of the...

4.8CVSS5.7AI score0.00207EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by