Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-46381

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00485EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-30762

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01582EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:31 a.m.9 views

CVE-2024-25876

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

6.1CVSS5.7AI score0.00443EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.23 views

CVE-2022-41431

xzs v3.8.0 was discovered to contain a cross-site scripting XSS vulnerability in the component /admin/question/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

5.4CVSS6AI score0.00628EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:33 p.m.8 views

CVE-2022-26198

Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a crafted payload injected into the Title text field...

9.8CVSS7.8AI score0.01582EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/02/22 3:30 p.m.21 views

Enhavo Cross-site Scripting vulnerability

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

6.1CVSS5.7AI score0.00443EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/02/22 2:15 p.m.27 views

CVE-2024-25876

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

6.1CVSS5.5AI score0.00443EPSS
Exploits1References2
OSV
OSV
added 2024/02/22 2:15 p.m.6 views

CVE-2024-25876

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

6.1CVSS5.9AI score
Exploits0References2
Cvelist
Cvelist
added 2024/02/22 12:0 a.m.34 views

CVE-2024-25876

A cross-site scripting XSS vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

5.7AI score0.00443EPSS
Exploits1References2
OSV
OSV
added 2022/10/17 9:15 p.m.13 views

CVE-2022-41431

xzs v3.8.0 was discovered to contain a cross-site scripting XSS vulnerability in the component /admin/question/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field...

5.4CVSS6AI score
Exploits0References4
Prion
Prion
added 2022/03/27 12:15 a.m.11 views

Code injection

Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a crafted payload injected into the Title text field...

7.5CVSS9.5AI score0.01582EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/26 11:18 p.m.14 views

CVE-2022-26198

Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a crafted payload injected into the Title text field...

9.8AI score0.01582EPSS
Exploits1References1
NVD
NVD
added 2014/05/08 2:29 p.m.12 views

CVE-2014-3123

Cross-site scripting XSS vulnerability in admin/manage-images.php in the NextCellent Gallery plugin before 1.19.18 for WordPress allows remote authenticated users with the NextGEN Upload images, NextGEN Manage gallery, or NextGEN Manage others gallery permission to inject arbitrary web script or...

2.1CVSS5.4AI score0.01589EPSS
Exploits1References4
Rows per page
Query Builder