CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Vulnrichment•added 2026/05/13 2:22 p.m.•5 views

CVE-2020-37225 Powie's WHOIS Domain Check 0.9.31 Persistent Cross-Site Scripting

Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by exploiting unsanitized input fields in plugin settings. Attackers can submit malicious payloads through textarea and input elements in t...

6.4CVSS5.9AI score0.00036EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2011-4951

Malware in sbrugna...

4.3CVSS6.4AI score0.00427EPSS

Exploits0References7

CNNVD•added 2025/02/24 12:0 a.m.•2 views

FlatPress 安全漏洞

FlatPress is a Php-based blog builder without database support from the FlatPress community. A security vulnerability exists in FlatPress version 1.3.1, which stems from an improperly cleaned and escaped TextArea field input in the Add Entry feature. An authenticated attacker can inject malicious...

4.8CVSS6.5AI score0.02005EPSS

Exploits1References3

Positive Technologies•added 2022/10/11 12:0 a.m.•2 views

PT-2022-25827 · Metro Ui · Metro Ui

Name of the Vulnerable Software and Affected Versions: Metro UI versions 4.4.0 through 4.5.1 Description: The issue is related to a reflected cross-site scripting XSS vulnerability. This occurs via a Javascript function where user input is not properly sanitized before rendering in the textarea...

6.1CVSS5.8AI score0.00247EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by