CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Positive Technologies•added 2026/03/31 12:0 a.m.•3 views

PT-2026-29205

A Stored Cross-site Scripting XSS vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.2AI score0.00037EPSS

Exploits0References2

EUVD•added 2025/11/24 6:31 p.m.•5 views

EUVD-2025-198889

A stored Cross-site Scripting XSS vulnerability affecting Service Items Management in DELMIA Service Process Engineer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6AI score0.00027EPSS

Exploits0References2

NVD•added 2025/10/13 8:15 a.m.•4 views

CVE-2025-10552

A stored Cross-site Scripting XSS vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00028EPSS

Exploits0References1

CVE•added 2025/10/13 7:36 a.m.•8 views

CVE-2025-10557

The CVE-2025-10557 entry concerns a stored Cross-site Scripting (XSS) vulnerability in ENOVIA Collaborative Industry Innovator’s Issue Management. Concrete details from connected sources show affected software as ENOVIA Collaborative Industry Innovator (3DEXPERIENCE) with vulnerable versions span...

8.7CVSS6.1AI score0.00028EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/10/13 12:0 a.m.•2 views

PT-2025-41768

Name of the Vulnerable Software and Affected Versions 3DSearch on 3DSwymer versions prior to 3DEXPERIENCE R2025x Description A stored Cross-site Scripting XSS issue exists in 3DSearch within 3DSwymer. This allows an attacker to execute arbitrary script code within a user’s browser session...

8.7CVSS6.4AI score0.00028EPSS

Exploits0References7

OSV•added 2024/12/16 3:15 p.m.•0 views

CVE-2024-12090

A stored Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6.1AI score0.01463EPSS

Exploits0References1

OSV•added 2024/10/16 12:15 p.m.•1 views

CVE-2024-6380

A reflected Cross-site Scripting XSS vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.0083EPSS

Exploits0References1

CNNVD•added 2023/11/21 12:0 a.m.•2 views

Dassault Systèmes 3DEXPERIENCE Cross-Site Scripting Vulnerability

Dassault Systèmes 3DEXPERIENCE is a business and innovation platform from Dassault Systèmes France. A cross-site scripting vulnerability exists in Dassault Systèmes 3DEXPERIENCE version R2022x through 3DEXPERIENCE version R2023x, which stems from the presence of a Stored Cross-Site Scripting XSS...

5.4CVSS5AI score0.00184EPSS

Exploits0References2

OSV•added 2023/08/28 4:15 p.m.•1 views

CVE-2023-1997

An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. A specially crafted HTTP request can lead to arbitrary command execution...

8.8CVSS5.9AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by