CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5210 matches found

Vulnrichment•added 2022/11/08 12:0 a.m.•4 views

CVE-2022-43144

A cross-site scripting XSS vulnerability in Canteen Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5.3AI score0.02012EPSS

Exploits2References3

NVD•added 2022/11/07 3:15 p.m.•8 views

CVE-2022-43317

A cross-site scripting XSS vulnerability in /hrm/index.php?msg of Human Resource Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS0.00356EPSS

Exploits1References1

Prion•added 2022/11/07 3:15 p.m.•13 views

Cross site scripting

A cross-site scripting XSS vulnerability in /hrm/index.php?msg of Human Resource Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

5.8CVSS5.9AI score0.00356EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/11/07 12:0 a.m.•12 views

CVE-2022-43317

A cross-site scripting XSS vulnerability in /hrm/index.php?msg of Human Resource Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6AI score0.00356EPSS

Exploits1References1

OSV•added 2022/11/03 12:15 p.m.•12 views

CVE-2022-41435

OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting XSS vulnerability in the component /system/sshkeys.js. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted public key comments...

5.4CVSS5.9AI score

Exploits0References2

Prion•added 2022/11/03 12:15 p.m.•17 views

Cross site scripting

4.9CVSS5.4AI score0.00224EPSS

Exploits1References2Affected Software1

NVD•added 2022/11/01 2:15 p.m.•10 views

CVE-2022-43082

A cross-site scripting XSS vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter...

6.1CVSS0.00356EPSS

Exploits1References1

NVD•added 2022/11/01 2:15 p.m.•10 views

CVE-2022-43079

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Train Scheduler App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

6.1CVSS0.00356EPSS

Exploits1References1

Prion•added 2022/11/01 2:15 p.m.•13 views

Cross site scripting

5.8CVSS5.9AI score0.00356EPSS

Exploits1References1Affected Software1

Prion•added 2022/11/01 2:15 p.m.•14 views

Cross site scripting

A cross-site scripting XSS vulnerability in /admin/add-fee.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the cmddept parameter...

4.3CVSS4.9AI score0.00369EPSS

Exploits1References1Affected Software1

Prion•added 2022/11/01 2:15 p.m.•12 views

Cross site scripting

A cross-site scripting XSS vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the vname parameter...

4.3CVSS4.9AI score0.00369EPSS

Exploits1References1Affected Software1

Prion•added 2022/11/01 2:15 p.m.•11 views

Cross site scripting

A cross-site scripting XSS vulnerability in /admin/edit-admin.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtemail parameter...

4.3CVSS4.9AI score0.00369EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2022/11/01 12:0 a.m.•4 views

CVE-2022-43079

5.9AI score0.00356EPSS

Exploits1References1

Vulnrichment•added 2022/11/01 12:0 a.m.•4 views

CVE-2022-43082

5.9AI score0.00356EPSS

Exploits1References1

Cvelist•added 2022/11/01 12:0 a.m.•12 views

CVE-2022-43082

6AI score0.00356EPSS

Exploits1References1

Cvelist•added 2022/11/01 12:0 a.m.•15 views

CVE-2022-43076

5.2AI score0.00369EPSS

Exploits1References1

Cvelist•added 2022/11/01 12:0 a.m.•12 views

CVE-2022-43079

6AI score0.00356EPSS

Exploits1References1

OSV•added 2022/10/31 12:15 p.m.•10 views

CVE-2022-40487

ProcessWire v3.0.200 was discovered to contain multiple cross-site scripting XSS vulnerabilities via the Search Users and Search Pages function. These vulnerabilities allow attackers to execute arbitrary web scripts or HTML via injection of a crafted payload...

6.1CVSS6.3AI score

Exploits0References2

Prion•added 2022/10/31 12:15 p.m.•19 views

Cross site scripting

5.8CVSS6.2AI score0.00496EPSS

Exploits0References2Affected Software1

CNVD•added 2022/10/31 12:0 a.m.•12 views

WordPress demon image annotation cross-site request forgery vulnerability

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. Cross-site request forgery vulnerability exists in WordPress demon image annotation 4.7 and earlier versions, which stems from the lack of nonce...

8.8CVSS6.8AI score0.00182EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by