CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Ximdex is a content and data management system. The system includes features such as an intelligent search engine, information aggregation, image and text recognition, etc. The DMS component is one of the data management components. A cross-site scripting vulnerability exists in the /edit URI of...

6.1CVSS5.8AI score0.0024EPSS

Exploits1References1

CNVD•added 2018/06/14 12:0 a.m.•1 views

Ximdex cross-site scripting vulnerability (CNVD-2018-14423)

Ximdex is a content and data management system. The system includes features such as an intelligent search engine, information aggregation, image and text recognition. A cross-site scripting vulnerability exists in the xowl/request.php file in Ximdex version 4.0. A remote attacker can exploit thi...

6.1CVSS5.8AI score0.0024EPSS

Exploits1References1

OSV•added 2018/06/13 1:29 p.m.•6 views

CVE-2018-12273

The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter...

6.1CVSS6.1AI score

Exploits0References1

NVD•added 2018/06/13 1:29 p.m.•8 views

CVE-2018-12272

xowl/request.php in Ximdex 4.0 has XSS via the content parameter...

6.1CVSS6AI score0.0024EPSS

Exploits1References1

Prion•added 2018/06/13 1:29 p.m.•8 views

Design/Logic Flaw

xowl/request.php in Ximdex 4.0 has XSS via the content parameter...

4.3CVSS5.9AI score0.0024EPSS

Exploits1References1Affected Software1

Prion•added 2018/06/13 1:29 p.m.•9 views

Cross site scripting

The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter...

4.3CVSS6AI score0.0024EPSS

Exploits1References1Affected Software1

OSV•added 2018/06/13 1:29 p.m.•7 views

CVE-2018-12272

xowl/request.php in Ximdex 4.0 has XSS via the content parameter...

6.1CVSS6.1AI score

Exploits0References1

Cvelist•added 2018/06/13 1:0 p.m.•9 views

CVE-2018-12272

xowl/request.php in Ximdex 4.0 has XSS via the content parameter...

6AI score0.0024EPSS

Exploits1References1

CVE•added 2018/06/13 1:0 p.m.•32 views

CVE-2018-12273

The CVE-2018-12273 entry affects Ximdex 4.0, specifically the DMS component. The vulnerability is in the /edit URI and allows cross-site scripting via the Ciudad or Nombre parameter. The issue is documented across multiple feeds (NVD, CNVD, OSV, Red Hat, etc.). The CVSS data indicate a network-ba...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References1Affected Software1

CVE•added 2018/06/13 1:0 p.m.•30 views

CVE-2018-12272

Ximdex 4.0 is affected by a cross-site scripting (XSS) vulnerability in xowl/request.php via the content parameter. The issue is described consistently across multiple sources as an XSS in Ximdex 4.0, without public details on exploit specifics or patches within the provided documents. No remedia...

6.1CVSS5.9AI score0.0024EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/06/13 1:0 p.m.•16 views

CVE-2018-12273

The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter...

6AI score0.0024EPSS

Exploits1References1

OSV•added 2018/06/08 1:29 a.m.•6 views

CVE-2018-12047

xfind/search in Ximdex 4.0 has XSS via the filternvalue parameters for non-negative values of n, as demonstrated by n equal to 0 through 12...

6.1CVSS6.1AI score

Exploits0References1