CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

Reflected XSS - Telerik Reporting Module

Cross-site scripting vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 11.0.17.406 allows remote attackers to inject arbitrary web script or HTML via the bgColor parameter to Telerik.ReportViewer.axd. id:...

6.1CVSS7AI score0.04838EPSS

Exploits0References5

RedhatCVE•added 2026/04/13 7:25 p.m.•0 views

CVE-2026-39713

Missing Authorization vulnerability in mailercloud Mailercloud – Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mailercloud – Integrate webforms and...

5.3CVSS5.2AI score0.0004EPSS

Exploits0References1

EUVD•added 2026/04/08 9:31 a.m.•0 views

EUVD-2026-20424

Missing Authorization vulnerability in mailercloud Mailercloud Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mailercloud Integrate webforms and...

5.9AI score0.0004EPSS

Exploits0References2

NVD•added 2026/04/08 9:16 a.m.•1 views

CVE-2026-39713

5.3CVSS0.0004EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•0 views

CVE-2026-39713 WordPress Mailercloud – Integrate webforms and synchronize website contacts plugin <= 1.0.7 - Broken Access Control vulnerability

5.3CVSS5.2AI score0.0004EPSS

Exploits0References1

ATTACKERKB•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39713

5.3CVSS5.2AI score0.0004EPSS

Exploits0References2

Cvelist•added 2026/04/08 8:30 a.m.•17 views

CVE-2026-39713 WordPress Mailercloud – Integrate webforms and synchronize website contacts plugin <= 1.0.7 - Broken Access Control vulnerability

5.3CVSS0.0004EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•5 views

CVE-2026-39713

CVE-2026-39713 affects the WordPress plugin Mailercloud – Integrate webforms and synchronize website contacts, vulnerable through an incorrectly configured access control allowing Missing Authorization. Affected versions are n/a through 1.0.7. The issue is described as broken/missing authorizatio...

5.3CVSS5.2AI score0.0004EPSS

Exploits0References1

CNNVD•added 2026/04/08 12:0 a.m.•2 views

WordPress plugin Mailercloud Integrate webforms and synchronize website contacts 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.0004EPSS

Exploits0References1

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

PT-2026-31275

Name of the Vulnerable Software and Affected Versions Mailercloud – Integrate webforms and synchronize website contacts versions n/a through 1.0.7 Description A missing authorization issue exists in Mailercloud – Integrate webforms and synchronize website contacts, allowing exploitation of...

5.8AI score0.0004EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 10:19 a.m.•2 views

CVE-2019-18925

Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication...

9.8CVSS7AI score0.00339EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:56 a.m.•5 views

CVE-2020-12635

XSS exists in the WebForms Pro M2 extension before 2.9.17 for Magento 2 via the textarea field...

6.1CVSS6.1AI score0.0024EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-8599

Malware in sbrugna...

9.8CVSS9.2AI score0.00339EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-18078

Malware in sbrugna...

6.1CVSS6.6AI score0.04838EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-4936

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-8598

Malware in sbrugna...

5.3CVSS5.6AI score0.00237EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 8:27 a.m.•3 views

CVE-2019-18924

Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ and variations, it is possible to list all the directories and check if a particular file exists...

5.3CVSS6.9AI score0.00237EPSS

Exploits0References1

CNVD•added 2020/06/30 12:0 a.m.•7 views

Adobe Magento WebForms Pro M2 Cross-Site Scripting Vulnerability

Adobe Magento is the United States Odo than Adobe company's set of open source PHP e-commerce system . The system provides rights management , search engines and payment gateways , etc. WebForms Pro M2 is used in which a form to build extensions . Adobe Magento 2 in the WebForms Pro M2 version...

6.1CVSS6.3AI score0.0024EPSS

Exploits1References1

NVD•added 2020/06/29 2:15 p.m.•11 views

CVE-2020-12635

XSS exists in the WebForms Pro M2 extension before 2.9.17 for Magento 2 via the textarea field...

6.1CVSS0.0024EPSS

Exploits1References2