Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (43802 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-0962 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva .webma file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0960 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva .properties file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0958 1 Mark Posts Project 1 Mark Posts 2024-11-21 4.8 Medium
The Mark Posts WordPress plugin before 2.0.1 does not escape new markers, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
CVE-2022-0957 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS via File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0956 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS via File Upload in GitHub repository star7th/showdoc prior to v.2.10.4.
CVE-2022-0955 1 Pimcore 1 Data-hub 2024-11-21 4.8 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/data-hub prior to 1.2.4.
CVE-2022-0954 1 Microweber 1 Microweber 2024-11-21 5.4 Medium
Multiple Stored Cross-site Scripting (XSS) Vulnerabilities in Shop's Other Settings, Shop's Autorespond E-mail Settings and Shops' Payments Methods in GitHub repository microweber/microweber prior to 1.2.11.
CVE-2022-0953 1 Download Anti-malware Security And Brute-force Firewall Project 1 Download Anti-malware Security And Brute-force Firewall 2024-11-21 6.1 Medium
The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.20.96 does not sanitise and escape the QUERY_STRING before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters
CVE-2022-0951 1 Showdoc 1 Showdoc 2024-11-21 6.1 Medium
File Upload Restriction Bypass leading to Stored XSS Vulnerability in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0946 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0945 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0942 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0941 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0940 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0938 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored XSS via file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0937 1 Showdoc 1 Showdoc 2024-11-21 5.4 Medium
Stored xss in showdoc through file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0936 1 Autolabproject 1 Autolab 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository autolab/autolab prior to 2.8.0.
CVE-2022-0930 1 Microweber 1 Microweber 2024-11-21 4.8 Medium
File upload filter bypass leading to stored XSS in GitHub repository microweber/microweber prior to 1.2.12.
CVE-2022-0929 1 Microweber 1 Microweber 2024-11-21 6.1 Medium
XSS on dynamic_text module in GitHub repository microweber/microweber prior to 1.2.11.
CVE-2022-0928 1 Microweber 1 Microweber 2024-11-21 5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.2.12.