Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | Hyperic HQ 3.2 - 4.2-beta1 Multiple XSS | 2 Oct 200900:00 | – | zdt |
 | CVE-2009-2898 | 2 Oct 200900:00 | – | circl |
 | Hyperic HQ Multiple XSS | 2 Oct 200900:00 | – | coresecurity |
 | CVE-2009-2898 | 13 Oct 200910:00 | – | cvelist |
 | Hyperic HQ 3.2 < 4.2-beta1 - Multiple Cross-Site Scripting Vulnerabilities | 2 Oct 200900:00 | – | exploitdb |
 | EUVD-2009-2888 | 7 Oct 202500:30 | – | euvd |
 | CVE-2009-2898 | 13 Oct 200910:30 | – | nvd |
 | Core Security Technologies Advisory 2009.0812 | 5 Oct 200900:00 | – | packetstorm |
 | Cross site scripting | 13 Oct 200910:30 | – | prion |
 | CORE-2009-0812-Hyperic HQ Multiple XSS | 6 Oct 200900:00 | – | securityvulns |
10
Node
OROROROROROROROROROROROROROROROROR
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| mode | query param | /alerts/Config.do | Stored XSS via Description field in Alerts list (PoC shows script in Description leading to persistent XSS). | CWE-79 |
| rid | query param | /alerts/Config.do | Stored XSS via Description field in Alerts list (PoC shows script in Description leading to persistent XSS). | CWE-79 |
| type | query param | /alerts/Config.do | Stored XSS via Description field in Alerts list (PoC shows script in Description leading to persistent XSS). | CWE-79 |
| typeId | query param | /mastheadAttach.do | Reflected XSS trigger by injecting script into numeric typeId parameter. | CWE-79 |
| eid | query param | /Resource.do | Reflected XSS trigger by injecting script into eid parameter. | CWE-79 |
| mode | query param | /admin/user/UserAdmin.do | Reflected XSS potential via unescaped input in mode/u parameters in user admin page. | CWE-79 |
| u | query param | /admin/user/UserAdmin.do | Reflected XSS potential via unescaped input in mode/u parameters in user admin page. | CWE-79 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
23 Apr 2026 00:35Current
5.1Medium risk
Vulners AI Score5.1
CVSS 23.5
EPSS0.01268