CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

CNNVD•added 2022/03/07 12:0 a.m.•2 views

WordPress plugin 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress E2Pdf Plugin versions prior to 1.16.45 that stems fro...

4.8CVSS5.7AI score0.0224EPSS

Exploits2References3

CNNVD•added 2021/10/04 12:0 a.m.•1 views

多款Qualcomm产品缓冲区错误漏洞

Qualcomm MSM8996AU and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The MSM8996AU is a central processing unit CPU product.The QCA6574AU is a central processing unit CPU product.The SD 636 is a central processing unit CPU product. A security vulnerability exists in Qualcomm that...

8.4CVSS7.3AI score0.00039EPSS

Exploits0References5

CNNVD•added 2021/02/05 12:0 a.m.•4 views

Fortinet FortiWeb 跨站脚本漏洞

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

6.1CVSS6.4AI score0.70027EPSS

Exploits0References3

CNVD•added 2020/06/22 12:0 a.m.•2 views

Mattermost Server Cross-Site Scripting Vulnerability (CNVD-2020-48231)

Mattermost Server is the United States Mattermost company's set of open source messaging platform. A cross-site scripting vulnerability exists in Mattermost Server versions prior to 4.3.0, prior to 4.2.1, and prior to 4.1.2. The vulnerability stems from a lack of proper validation of client data ...

6.1CVSS6.3AI score0.00359EPSS

Exploits0References1

CNVD•added 2020/06/04 12:0 a.m.•2 views

CloudBees Jenkins ECharts API Plugin Cross-Site Scripting Vulnerability (CNVD-2020-33741)

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing project and some timed tasks . ECharts API Plugin is used in one of the chart...

5.4CVSS6.5AI score0.00121EPSS

Exploits0References1

CNVD•added 2020/04/24 12:0 a.m.•1 views

AirDisk Pro app cross-site scripting vulnerability (CNVD-2020-25589)

AirDisk Pro app is a mobile application for managing AirDisk Pro wireless storage devices. The program supports document viewing, PDF reading, music playback, image viewing, text editing and file management. A cross-site scripting vulnerability exists in version 5.5.3 of the AirDisk Pro app for...

6.1CVSS6.3AI score0.00328EPSS

Exploits2References1

CNVD•added 2019/07/09 12:0 a.m.•3 views

Wikindx Cross-Site Scripting Vulnerability

Wikindx is a suite of virtual research environments online bibliography and quote/notes management and article creation system. A cross-site scripting vulnerability exists in the noMenu and noSubMenu in the core/navigation/MENU.php file in WIKINDX versions prior to 5.8.1. The vulnerability stems...

6.1CVSS6.4AI score0.00511EPSS

Exploits0References1

CNVD•added 2019/06/24 12:0 a.m.•2 views

b3log Symphony cross-site scripting vulnerability (CNVD-2019-19290)

b3log Symphony Sym is a modern open source community platform written in the Java language. A cross-site scripting vulnerability exists in b3log Symphony versions prior to 3.3.0. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker can...

4.8CVSS6.3AI score0.0034EPSS

Exploits1References1

CNVD•added 2019/06/19 12:0 a.m.•2 views

Helpy Cross-Site Scripting Vulnerability

Helpy is an open source customer support application. The program includes features such as a knowledge base, community discussions and email. A cross-site scripting vulnerability exists in Helpy version 2.1.0. The vulnerability stems from the WEB application lacking proper validation of...

6.1CVSS6.4AI score0.0024EPSS

Exploits0References1

CNVD•added 2019/06/13 12:0 a.m.•2 views

SAP BusinessObjects Business Intelligence Platform Cross-Site Scripting Vulnerability (CNVD-2019-34745)

SAP BusinessObjects Business Intelligence Platform is a suite of bookstore intelligence software and enterprise performance solutions from Germany's SAP. The product features report generation, analytics and data visualization. A cross-site scripting vulnerability exists in SAP BusinessObjects...

6.1CVSS6.3AI score0.00231EPSS

Exploits0References1

CNVD•added 2019/05/10 12:0 a.m.•1 views

Open-Xchange OX App Suite Cross-Site Scripting Vulnerability

Open-Xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange USA. The environment allows users to manage email, tasks, files, etc. more intuitively. A cross-site scripting vulnerability exists in OX Software GmbH App Suite 7.8.4 and earlier versions. The...

6.1CVSS6.3AI score0.00356EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by