CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/10/29 3:18 p.m.•2 views

CVE-2025-34314

IPFire versions prior to 2.29 Core Update 198 contain a stored cross-site scripting XSS vulnerability that allows an authenticated attacker to inject arbitrary JavaScript code through the SRC, DST, and COMMENT parameters when creating a time constraint rule. When a user adds a time constraint rul...

5.4CVSS6AI score0.00025EPSS

Exploits0References1

EUVD•added 2025/10/28 3:30 p.m.•2 views

EUVD-2025-36523

5.1CVSS5.5AI score0.00025EPSS

Exploits0References4

OSV•added 2025/10/28 3:16 p.m.•0 views

CVE-2025-34314

5.4CVSS5.9AI score0.00025EPSS

Exploits0References3

NVD•added 2025/10/28 3:16 p.m.•2 views

CVE-2025-34314

5.4CVSS0.00025EPSS

Exploits0References3

CVE•added 2025/10/28 2:33 p.m.•4 views

CVE-2025-34314

IPFire

5.4CVSS5.6AI score0.00025EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/10/28 2:33 p.m.•2 views

CVE-2025-34314 IPFire < v2.29 Stored XSS via Time Constraint Rule URL Filter

5.1CVSS5.5AI score0.00025EPSS

Exploits0References3

Cvelist•added 2025/10/28 2:33 p.m.•3 views

CVE-2025-34314 IPFire < v2.29 Stored XSS via Time Constraint Rule URL Filter

5.1CVSS0.00025EPSS

Exploits0References3

Positive Technologies•added 2025/10/28 12:0 a.m.•3 views

PT-2025-44173

Name of the Vulnerable Software and Affected Versions IPFire versions prior to 2.29 Core Update 198 Description The software contains a stored cross-site scripting XSS issue that allows an authenticated attacker to inject arbitrary JavaScript code. This is achieved by manipulating the SRC, DST, a...

5.4CVSS5.7AI score0.00025EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by