Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:26 a.m.2 views

CVE-2023-4710

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

6.1CVSS6AI score0.00076EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-54558

Malicious code in bioql PyPI...

6.1CVSS5AI score0.00076EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-54557

Malicious code in bioql PyPI...

6.1CVSS4.4AI score0.00091EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 5:56 a.m.5 views

CVE-2023-4709

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...

6.1CVSS6.1AI score0.00091EPSS
Exploits0
NVD
NVDadded 2023/09/01 8:15 p.m.9 views

CVE-2023-4710

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

6.1CVSS4.8AI score0.00076EPSS
Exploits0References2
OSV
OSVadded 2023/09/01 8:15 p.m.1 views

CVE-2023-4710

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

6.1CVSS3.8AI score
Exploits0References2
Prion
Prionadded 2023/09/01 8:15 p.m.16 views

Cross site scripting

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

5CVSS6AI score0.00076EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2023/09/01 7:15 p.m.9 views

CVE-2023-4709

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...

6.1CVSS4.8AI score0.00091EPSS
Exploits0References4
OSV
OSVadded 2023/09/01 7:15 p.m.1 views

CVE-2023-4709

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...

2.3CVSS3.7AI score0.00091EPSS
Exploits0References4
Prion
Prionadded 2023/09/01 7:15 p.m.14 views

Cross site scripting

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this...

5CVSS6AI score0.00091EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2023/09/01 7:0 p.m.37 views

CVE-2023-4710

CVE-2023-4710 affects TOTVS RM 12.1, Portal component. The vulnerability stems from manipulation of the d argument, leading to cross-site scripting. The attack is capable of remote execution. Connected documents do not provide patch/version details or explicit remediation. Other references reiter...

6.1CVSS4.7AI score0.00076EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/09/01 7:0 p.m.14 views

CVE-2023-4710 TOTVS RM Portal cross site scripting

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

5CVSS6.2AI score0.00076EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/09/01 7:0 p.m.11 views

CVE-2023-4710 TOTVS RM Portal cross site scripting

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

5CVSS6.2AI score0.00076EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/09/01 6:31 p.m.26 views

CVE-2023-4709 TOTVS RM Portal Login.aspx cross site scripting

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...

3.1CVSS4AI score0.00091EPSS
Exploits0References4
CVE
CVEadded 2023/09/01 6:31 p.m.56 views

CVE-2023-4709

TOTVS RM 12.1 Portal.Login.aspx vulnerable to cross-site scripting via VIEWSTATE manipulation. Impact described as remote exploitation with high attack complexity and low/none exploitation risk in defaults, but configurable environments can still be affected. Affected component: Login.aspx in Por...

6.1CVSS4AI score0.00091EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2023/09/01 6:31 p.m.20 views

CVE-2023-4709 TOTVS RM Portal Login.aspx cross site scripting

A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...

3.1CVSS6.2AI score0.00091EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/09/01 12:0 a.m.2 views

PT-2023-30298 · Totvs · Totvs Rm

Name of the Vulnerable Software and Affected Versions: TOTVS RM version 12.1 Description: A problematic vulnerability has been found in the Portal component of TOTVS RM, specifically in the Login.aspx file. The issue arises from the manipulation of the VIEWSTATE argument, leading to cross-site...

6.1CVSS6.6AI score0.00091EPSS
Exploits0References6
CNNVD
CNNVDadded 2023/09/01 12:0 a.m.3 views

TOTVS RM Cross-Site Scripting Vulnerability

TOTVS RM is a complete human resource management solution from TOTVS Brazil. A cross-site scripting vulnerability exists in TOTVS RM version 12.1, which stems from the fact that incorrect manipulation of parameter d can lead to cross-site scripting...

6.1CVSS5.8AI score0.00076EPSS
Exploits0References3
Rows per page
Query Builder