CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 10:8 a.m.•7 views

CVE-2024-27705

Cross Site Scripting vulnerability in Leantime v3.0.6 allows attackers to execute arbitrary code via upload of crafted PDF file to the files/browse endpoint...

7.6CVSS7.4AI score0.00556EPSS

Exploits1References1

NVD•added 2025/01/21 2:15 p.m.•23 views

CVE-2025-22716

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in taskbuilder Taskbuilder taskbuilder allows SQL Injection.This issue affects Taskbuilder: from n/a through = 3.0.6...

8.8CVSS0.00416EPSS

Exploits0References1

Positive Technologies•added 2023/05/28 12:0 a.m.•5 views

PT-2023-24223 · Crocoblock · Crocoblock Jetformbuilder

Name of the Vulnerable Software and Affected Versions: Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin versions 3.0.6 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into...

8.8CVSS8.8AI score0.00256EPSS

Exploits0References3

CNVD•added 2020/12/23 12:0 a.m.•2 views

IBM Financial Transaction Manager Authorization Issues Vulnerability

IBM Financial Transaction Manager for High Value Payments for Multi-Platform FTM HVP is a financial transaction manager for multi-platforms from IBM, USA. The product is primarily used to monitor, track and report on financial payments and transactions. An authorization issue vulnerability exists...

6.3CVSS6.6AI score0.00755EPSS

Exploits0References1

CNVD•added 2018/08/08 12:0 a.m.•3 views

PHP Scripts Mall PHP Template Store Script Cross-Site Scripting Vulnerability

PHP Scripts Mall PHP Template Store Script is a set of scripts for selling website templates online by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall PHP Template Store Script version 3.0.6. The vulnerability can be exploited by a remote attacker to inject...

5.4CVSS5.3AI score0.01604EPSS

Exploits5References1

PyPA•added 2008/03/20 12:44 a.m.•7 views

PYSEC-2008-14

Multiple cross-site request forgery CSRF vulnerabilities in Plone CMS 3.0.5 and 3.0.6 allow remote attackers to 1 add arbitrary accounts via the joinform page and 2 change the privileges of arbitrary groups via the prefsgroupsoverview page...

4.3CVSS7.3AI score0.00642EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by