Export limit exceeded: 350871 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 45952 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (45952 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-44075 | 1 Small Crm Project | 1 Small Crm | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting vulnerability in Small CRM in PHP v.3.0 allows a remote attacker to execute arbitrary code via a crafted payload to the Address parameter. | ||||
| CVE-2023-44048 | 1 Oretnom23 | 1 Expense Tracker | 2024-11-21 | 5.4 Medium |
| Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category. | ||||
| CVE-2023-44043 | 1 Blackcat-cms | 1 Blackcat Cms | 2024-11-21 | 6.1 Medium |
| A reflected cross-site scripting (XSS) vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter. | ||||
| CVE-2023-44042 | 1 Blackcat-cms | 1 Blackcat Cms | 2024-11-21 | 5.4 Medium |
| A stored cross-site scripting (XSS) vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter. | ||||
| CVE-2023-44012 | 1 Mojoportal | 1 Mojoportal | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the helpkey parameter in the Help.aspx component. | ||||
| CVE-2023-43952 | 1 Sscms Project | 1 Sscms | 2024-11-21 | 5.4 Medium |
| SSCMS 7.2.2 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Material Management component. | ||||
| CVE-2023-43951 | 1 Sscms Project | 1 Sscms | 2024-11-21 | 5.4 Medium |
| SSCMS 7.2.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Column Management component. | ||||
| CVE-2023-43906 | 1 Onworks | 1 Xolo Cms | 2024-11-21 | 6.1 Medium |
| Xolo CMS v0.11 was discovered to contain a reflected cross-site scripting (XSS) vulnerability. | ||||
| CVE-2023-43884 | 1 Intelliants | 1 Subrion | 2024-11-21 | 5.4 Medium |
| A Cross-site scripting (XSS) vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter. | ||||
| CVE-2023-43879 | 1 Ritecms | 1 Ritecms | 2024-11-21 | 4.8 Medium |
| Rite CMS 3.0 has a Cross-Site scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu. | ||||
| CVE-2023-43878 | 1 Ritecms | 1 Ritecms | 2024-11-21 | 5.4 Medium |
| Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu. | ||||
| CVE-2023-43877 | 1 Ritecms | 1 Ritecms | 2024-11-21 | 4.8 Medium |
| Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a payload crafted in the Home Page fields in the Administration menu. | ||||
| CVE-2023-43876 | 1 Octobercms | 1 October | 2024-11-21 | 5.4 Medium |
| A Cross-Site Scripting (XSS) vulnerability in installation of October v.3.4.16 allows an attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost field. | ||||
| CVE-2023-43875 | 1 Intelliants | 1 Subrion Cms | 2024-11-21 | 6.1 Medium |
| Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser, adminusername and adminemail. | ||||
| CVE-2023-43874 | 1 E107 | 1 E107 Cms | 2024-11-21 | 5.4 Medium |
| Multiple Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Copyright and Author fields in the Meta & Custom Tags Menu. | ||||
| CVE-2023-43873 | 1 E107 | 1 E107 Cms | 2024-11-21 | 5.4 Medium |
| A Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Name filed in the Manage Menu. | ||||
| CVE-2023-43872 | 1 Cmsmadesimple | 1 Cms Made Simple | 2024-11-21 | 5.4 Medium |
| A File upload vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS). | ||||
| CVE-2023-43871 | 1 Wbce | 1 Wbce Cms | 2024-11-21 | 5.4 Medium |
| A File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS). | ||||
| CVE-2023-43830 | 1 Intelliants | 1 Subrion | 2024-11-21 | 5.4 Medium |
| A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit', 'Maximum deposit' and/or 'Maximum balance'. | ||||
| CVE-2023-43828 | 1 Intelliants | 1 Subrion | 2024-11-21 | 5.4 Medium |
| A Cross-site scripting (XSS) vulnerability in /panel/languages/ of Subrion v4.2.1 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Title' parameter. | ||||