Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (43942 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-40673 2024-11-21 6.5 Medium
: Improper Control of Interaction Frequency vulnerability in cartpauj Cartpauj Register Captcha allows Functionality Misuse.This issue affects Cartpauj Register Captcha: from n/a through 1.0.02.
CVE-2023-40669 1 Twinpictures 1 Collapse-o-matic 2024-11-21 6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in twinpictures, baden03 Collapse-O-Matic plugin <= 1.8.5.5 versions.
CVE-2023-40668 1 Pdfcrowd 1 Save As Pdf 2024-11-21 5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd plugin <= 2.16.0 versions.
CVE-2023-40667 1 Getlasso 1 Simple Urls 2024-11-21 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Lasso Simple URLs plugin <= 117 versions.
CVE-2023-40665 1 Pdfcrowd 1 Save As Image 2024-11-21 5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as Image plugin by Pdfcrowd plugin <= 2.16.0 versions.
CVE-2023-40664 1 Rednao 1 Smart Donations 2024-11-21 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in RedNao Donations Made Easy – Smart Donations plugin <= 4.0.12 versions.
CVE-2023-40659 1 Joomboost 1 Easy Quick Contact 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the Easy Quick Contact module for Joomla.
CVE-2023-40658 1 Deconf 1 Clicky Analytics Dashboard 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the Clicky Analytics Dashboard module for Joomla.
CVE-2023-40657 1 Artio 1 Joomdoc 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the Joomdoc component for Joomla.
CVE-2023-40656 1 Plasma-web 1 Quickform 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the Quickform component for Joomla.
CVE-2023-40628 1 Extplorer 1 Extplorer 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the Extplorer component for Joomla.
CVE-2023-40627 1 Mlwebtechnologies 1 Livingword 2024-11-21 6.1 Medium
A reflected XSS vulnerability was discovered in the LivingWord component for Joomla.
CVE-2023-40624 1 Sap 1 Netweaver Application Server Abap 2024-11-21 5.5 Medium
SAP NetWeaver AS ABAP (applications based on Unified Rendering) - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 702, SAP_BASIS 731, allows an attacker to inject JavaScript code that can be executed in the web-application. An attacker could thereby control the behavior of this web-application.
CVE-2023-40618 1 Openknowledgemaps 1 Head Start 2024-11-21 6.1 Medium
A reflected cross-site scripting (XSS) vulnerability in OpenKnowledgeMaps Head Start versions 4, 5, 6, 7 as well as Visual Project Explorer 1.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'service' parameter in 'headstart_snapshot.php'.
CVE-2023-40617 1 Openknowledgemaps 1 Head Start 2024-11-21 6.1 Medium
A reflected cross-site scripting (XSS) vulnerability in OpenKnowledgeMaps Head Start 7 allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'file' parameter in 'displayPDF.php'.
CVE-2023-40605 1 93digital 1 Typing Effect 2024-11-21 6.5 Medium
Auth. (contributor) Cross-Site Scripting (XSS) vulnerability in 93digital Typing Effect plugin <= 1.3.6 versions.
CVE-2023-40604 1 Jesmadsen 1 Cookies By Jm 2024-11-21 5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jes Madsen Cookies by JM plugin <= 1.0 versions.
CVE-2023-40601 1 Estatik 1 Estatik Mortgage Calculator 2024-11-21 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Estatik Estatik Mortgage Calculator plugin <= 2.0.7 versions.
CVE-2023-40560 1 Toolstack 1 Schedule Posts Calendar 2024-11-21 5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Greg Ross Schedule Posts Calendar plugin <= 5.2 versions.
CVE-2023-40554 1 Adenion 1 Blog2social 2024-11-21 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Blog2Social, Adenion Blog2Social: Social Media Auto Post & Scheduler plugin <= 7.2.0 versions.