CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-36862

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00436EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 10:19 a.m.•5 views

CVE-2024-31574

Cross Site Scripting vulnerability in TWCMS v.2.6 allows a local attacker to execute arbitrary code via a crafted script...

5CVSS7AI score0.00047EPSS

Exploits1References1

NVD•added 2024/06/12 5:15 p.m.•12 views

CVE-2024-37878

Cross Site Scripting vulnerability in TWCMS v.2.0.3 allows a remote attacker to execute arbitrary code via the /TWCMS-gh-pages/twcms/runtime/twcmsview/default,index.htm.php" PHP directly echoes parameters input from external sources...

6.1CVSS0.00436EPSS

Exploits0References1

OSV•added 2024/06/12 5:15 p.m.•0 views

CVE-2024-37878

6.1CVSS6.1AI score

Exploits0References1

CNNVD•added 2024/06/12 12:0 a.m.•3 views

TWCMS Security Vulnerabilities

TWCMS is an enterprise website management system from China's Tong Wang CMS TWCMS company. A security vulnerability exists in TWCMS version 2.0.3, which originates from a PHP file directly echoing parameters entered from an external source, allowing remote attackers to perform cross-site scriptin...

6.1CVSS6.3AI score0.00436EPSS

Exploits0References2

Cvelist•added 2024/06/12 12:0 a.m.•14 views

CVE-2024-37878

0.00436EPSS

Exploits0References1

CVE•added 2024/06/12 12:0 a.m.•47 views

CVE-2024-37878

The CVE-2024-37878 details a Cross Site Scripting vulnerability in TWCMS 2.0.3. A PHP file (/TWCMS-gh-pages/twcms/runtime/twcms_view/default,index.htm.php) directly echoes input from external sources, enabling remote attacker-supplied content to be reflected in the web UI. Documents consistently ...

6.1CVSS7.1AI score0.00436EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/06/12 12:0 a.m.•16 views

CVE-2024-37878

7.1AI score0.00436EPSS

Exploits0References1

NVD•added 2024/04/25 5:15 p.m.•6 views

CVE-2024-31574

Cross Site Scripting vulnerability in TWCMS v.2.6 allows a local attacker to execute arbitrary code via a crafted script...

5CVSS6.6AI score0.00047EPSS

Exploits1References1

CVE•added 2024/04/25 12:0 a.m.•61 views

CVE-2024-31574

The CVE-2024-31574 entry concerns TWCMS v2.6, where a Cross-Site Scripting (XSS) vulnerability could allow a local attacker to execute arbitrary code via a crafted script. The vulnerability is described across multiple sources as XSS affecting TWCMS 2.6, with exploitation requiring local access a...

5CVSS6.9AI score0.00047EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2024/04/25 12:0 a.m.•7 views

CVE-2024-31574

Cross Site Scripting vulnerability in TWCMS v.2.6 allows a local attacker to execute arbitrary code via a crafted script...

7.1AI score0.00047EPSS

Exploits1References1

Positive Technologies•added 2024/04/25 12:0 a.m.•2 views

PT-2024-24142 · Twcms · Twcms

Name of the Vulnerable Software and Affected Versions: TWCMS version 2.6 Description: A Cross Site Scripting issue allows a local attacker to execute arbitrary code via a crafted script. Recommendations: For TWCMS version 2.6, at the moment, there is no information about a newer version that...

5CVSS7.1AI score0.00047EPSS

Exploits1References2

Cvelist•added 2024/04/25 12:0 a.m.•15 views

CVE-2024-31574

Cross Site Scripting vulnerability in TWCMS v.2.6 allows a local attacker to execute arbitrary code via a crafted script...

6.8AI score0.00047EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by