CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.8AI score0.00066EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:21 p.m.•5 views

CVE-2021-41932

A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc...

8.8CVSS7.4AI score0.00406EPSS

Exploits1

RedhatCVE•added 2025/05/22 8:38 p.m.•5 views

CVE-2021-44035

Wolters Kluwer TeamMate AM 12.4 Update 1 mishandles attachment uploads, such that an authenticated user may download and execute malicious files...

7.8CVSS7AI score0.00309EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:26 a.m.•3 views

CVE-2019-10253

A Cross-Site Request Forgery CSRF vulnerability exists in TeamMate+ 21.0.0.0 that allows a remote attacker to modify application data upload malicious/forged files on a TeamMate server, or replace existing uploaded files with malicious/forged files. The specific flaw exists within the handling of...

6.5CVSS7AI score0.00206EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 4:17 a.m.•4 views

CVE-2010-3125

Untrusted search path vulnerability in TeamMate Audit Management Software Suite 8.0 patch 2 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc71enu.dll that is located in the same folder as a .tmx file...

9.3CVSS7.9AI score0.03067EPSS

Exploits1References1

ATTACKERKB•added 2023/06/16 9:15 p.m.•0 views

CVE-2023-33438

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.9AI score0.00066EPSS

Exploits1References3

NVD•added 2023/06/16 9:15 p.m.•6 views

CVE-2023-33438

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.4AI score0.00066EPSS

Exploits1References2

OSV•added 2023/06/16 9:15 p.m.•2 views

CVE-2023-33438

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

5.4CVSS5.9AI score0.00066EPSS

Exploits1References2

Prion•added 2023/06/16 9:15 p.m.•11 views

Cross site scripting

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

4.9CVSS5.4AI score0.00066EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2023/06/16 12:0 a.m.•12 views

CVE-2023-33438

A stored Cross-site scripting XSS vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML...

5.9AI score0.00066EPSS

Exploits1References2

Positive Technologies•added 2023/06/16 12:0 a.m.•2 views

PT-2023-24341 · Wolters Kluwer · Wolters Kluwer Teammate+

Name of the Vulnerable Software and Affected Versions: Wolters Kluwer TeamMate+ version 35.0.11.0 Description: A stored Cross-site scripting XSS vulnerability allows remote attackers to inject arbitrary web script or HTML. This issue enables attackers to potentially execute malicious scripts on t...

5.4CVSS6.1AI score0.00066EPSS

Exploits1References6

CNNVD•added 2023/06/16 12:0 a.m.•3 views

Wolters Kluwer TeamMate+ 跨站脚本漏洞

Wolters Kluwer TeamMate+ is a financial audit management software from Wolters Kluwer, a Dutch company. A security vulnerability exists in Wolters Kluwer TeamMate+ version 35.0.11.0. An attacker can exploit this vulnerability to execute arbitrary web script or HTML...

5.4CVSS6.1AI score0.00066EPSS

Exploits1References3

CVE•added 2023/06/16 12:0 a.m.•44 views

CVE-2023-33438

CVE-2023-33438 describes a stored Cross-site scripting (XSS) vulnerability in Wolters Kluwer TeamMate+ version 35.0.11.0. The issue allows remote attackers to inject arbitrary web script or HTML. The connected sources consistently identify the affected product and vulnerability type, but do not p...

5.4CVSS5.3AI score0.00066EPSS

Exploits1References2Affected Software1

CNVD•added 2022/06/09 12:0 a.m.•22 views

Wolters Kluwer TeamMate Audit SQL Injection Vulnerability

Wolters Kluwer TeamMate Audit is a cloud-based audit management tool from Wolters Kluwer Netherlands. A SQL injection vulnerability exists in Wolters Kluwer TeamMate Audit version 28.0.19.0, which stems from a lack of filtering and escaping of SQL data in search forms. An attacker could use this...

8.8CVSS3.3AI score0.00406EPSS

Exploits1References1

OSV•added 2022/06/06 3:15 p.m.•0 views

CVE-2021-41932

8.8CVSS5.8AI score0.00406EPSS

Exploits1References1

NVD•added 2022/06/06 3:15 p.m.•11 views

CVE-2021-41932

8.8CVSS0.00406EPSS

Exploits1References1

Rows per page