Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 12:16 a.m.5 views

CVE-2022-45050

A reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The title parameter on the twitter.php endpoint does not properly neutralise user input, resulting in the vulnerability...

6.1CVSS6.3AI score0.00358EPSS
Exploits0References1
OSV
OSVadded 2024/06/10 6:15 p.m.10 views

CVE-2024-31612

Emlog pro2.3 is vulnerable to Cross Site Request Forgery CSRF via twitter.php which can be used with a XSS vulnerability to access administrator information...

6.5CVSS6.2AI score
Exploits0References1
CNNVD
CNNVDadded 2024/06/10 12:0 a.m.1 views

emlog Security Vulnerabilities

emlog is a PHP and MySQL based CMS website builder by emlog's individual developers. A security vulnerability exists in emlog version 2.3. An attacker can exploit this vulnerability to conduct a cross-site request forgery CSRF attack via twitter.php...

6.5CVSS6.7AI score0.00163EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/06/10 12:0 a.m.14 views

CVE-2024-31612

Emlog pro2.3 is vulnerable to Cross Site Request Forgery CSRF via twitter.php which can be used with a XSS vulnerability to access administrator information...

0.00163EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/06/10 12:0 a.m.19 views

CVE-2024-31612

Emlog pro2.3 is vulnerable to Cross Site Request Forgery CSRF via twitter.php which can be used with a XSS vulnerability to access administrator information...

6.3AI score0.00163EPSS
Exploits1References1
CVE
CVEadded 2024/06/10 12:0 a.m.51 views

CVE-2024-31612

CVE-2024-31612 affects Emlog Pro 2.3. The Red Hat/NVD/OSV/ other entries describe a CSRF vulnerability via twitter.php that can be combined with a Cross-Site Scripting (XSS) issue to access administrator information. This is the explicit vulnerability mechanism provided in the connected documents...

6.5CVSS6.3AI score0.00163EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/14 8:0 p.m.10 views

CVE-2024-3762 Emlog Pro Whisper Page twitter.php cross site scripting

A vulnerability was found in Emlog Pro 2.2.10. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/twitter.php of the component Whisper Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

3.3CVSS6.4AI score0.00063EPSS
Exploits1References4
Cvelist
Cvelistadded 2024/04/14 8:0 p.m.15 views

CVE-2024-3762 Emlog Pro Whisper Page twitter.php cross site scripting

A vulnerability was found in Emlog Pro 2.2.10. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/twitter.php of the component Whisper Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

3.3CVSS3.8AI score0.00063EPSS
Exploits1References4
CVE
CVEadded 2024/04/14 8:0 p.m.67 views

CVE-2024-3762

Summary: CVE-2024-3762 affects Emlog Pro 2.2.10, specifically the Whisper Page component’s /admin/twitter.php. The issue is a cross-site scripting vulnerability that can be exploited remotely. Public disclosure exists (VDB-260602). Vendor response noted as absent. Technical details from connected...

5.4CVSS6.2AI score0.00063EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2023/11/15 6:15 a.m.9 views

CVE-2023-41597

EyouCms v1.6.2 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /admin/twitter.php?activet...

6.1CVSS0.11489EPSS
Exploits1References1
Prion
Prionadded 2023/11/15 6:15 a.m.13 views

Cross site scripting

EyouCms v1.6.2 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /admin/twitter.php?activet...

5.8CVSS6.3AI score0.11489EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/11/15 12:0 a.m.12 views

CVE-2023-41597

EyouCms v1.6.2 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /admin/twitter.php?activet...

6.2AI score0.11489EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/11/15 12:0 a.m.2 views

EyouCms Cross-Site Scripting Vulnerability

Zanzan Network Technology EyouCms Eyou CMS is an open source content management system CMS based on ThinkPHP by China Zanzan Network Technology. A cross-site scripting vulnerability exists in EyouCms v1.6.2, which stems from poor filtering of the activet parameter in the twitter.php file, resulti...

6.1CVSS6AI score0.11489EPSS
Exploits1References2
Cvelist
Cvelistadded 2023/05/30 11:31 p.m.16 views

CVE-2012-10015 BestWebSoft Twitter Plugin Settings Page twitter.php twttr_settings_page cross-site request forgery

A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttrsettingspage of the file twitter.php of the component Settings Page. The manipulation leads to cross-site request forgery. It is possible to launch...

5CVSS8.8AI score0.00102EPSS
Exploits0References3
NVD
NVDadded 2022/12/01 9:15 a.m.9 views

CVE-2022-45050

A reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The title parameter on the twitter.php endpoint does not properly neutralise user input, resulting in the vulnerability...

6.1CVSS0.00358EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/01 8:0 a.m.5 views

CVE-2022-45050 Reflected XSS in Axiell Iguana CMS

A reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The title parameter on the twitter.php endpoint does not properly neutralise user input, resulting in the vulnerability...

6.1CVSS6.3AI score0.00358EPSS
Exploits0References2
Cvelist
Cvelistadded 2022/12/01 8:0 a.m.9 views

CVE-2022-45050 Reflected XSS in Axiell Iguana CMS

A reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The title parameter on the twitter.php endpoint does not properly neutralise user input, resulting in the vulnerability...

6.1CVSS6.3AI score0.00358EPSS
Exploits0References2
Openbugbounty
Openbugbountyadded 2016/11/13 10:1 a.m.12 views

kusc.kumadai.com XSS vulnerability

Vulnerable URL: http://kusc.kumadai.com/js/twitter.php?callback=prompt/OPENBUGBOUNTY/...

6.9AI score
Exploits0
Openbugbounty
Openbugbountyadded 2016/11/13 9:58 a.m.10 views

te-kyu.com XSS vulnerability

Vulnerable URL: http://te-kyu.com/inc/twitteroauth/twitter.php?callback=prompt/OPENBUGBOUNTY/...

6.9AI score
Exploits0
Rows per page
Query Builder