CVE-2016-9406

Cross-site scripting XSS vulnerability in the User control panel in MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Google Chrome Blink Cross-Site Scripting Vulnerability (CNVD-2016-12103)

Google Chrome is a web browser developed by Google Inc. Blink is a browser layout engine rendering engine jointly developed by Google Inc. and Opera Software of Norway. A cross-site scripting vulnerability exists in Blink in versions of Google Chrome prior to 55.0.2883.75. An attacker can exploit...

Google Chrome Blink Cross-Site Scripting Vulnerability (CNVD-2016-12101)

Google Chrome is a web browser developed by Google Inc. Blink is a browser layout engine rendering engine jointly developed by Google Inc. and Opera Software of Norway. A cross-site scripting vulnerability exists in Blink in versions of Google Chrome prior to 55.0.2883.75. An attacker can exploit...

Wordpress forget-about-shortcode-buttons plugin cross-site scripting vulnerability

WordPress is the WordPress Software Foundation of a set of PHP language development of the blogging platform, the platform supports PHP and MySQL server set up a personal blog site. get-about-shortcode-buttons is one of the plug-ins used to add CSS buttons in the post editor screen. A cross-site...

Cross site scripting

Cross-site scripting XSS vulnerability in the Web UI in the web portal in IBM Tealeaf Customer Experience before 8.7.1.8847 FP10, 8.8 before 8.8.0.9049 FP9, 9.0.0 and 9.0.1 before 9.0.1.1117 FP5, 9.0.1A before 9.0.1.51089.0.1A FP5, 9.0.2 before 9.0.2.1223 FP3, and 9.0.2A before 9.0.2.52249.0.2A F...

Google Chrome Cross-Site Scripting Vulnerability (CNVD-2016-07212)

Google Chrome is a web browser developed by the American company Google Google. A cross-site scripting vulnerability exists in versions of Google Chrome prior to 53.0.2785.89. An attacker can exploit this vulnerability to inject arbitrary web script or HTML...

CVE-2016-6634

Cross-site scripting XSS vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Fiyo CMS Cross-Site Scripting Vulnerability

Fiyo CMS is a content management system CMS for creating CMS templates. A cross-site scripting vulnerability exists in Fiyo CMS version 2.0.6.1, which can be exploited by an attacker to inject arbitrary web script or HTML...

Cisco WebEx Meetings Server Cross-Site Scripting Vulnerability

Cisco WebEx Meetings Server CWMS is the United States Cisco Cisco WebEx meeting program in a set of multifunctional meeting solutions that include audio, video and Web conferencing. A cross-site scripting vulnerability exists in the management interface of Cisco WebEx Meetings Server CWMS version...

Cross site scripting

Cross-site scripting XSS vulnerability in Trend Micro Internet Security 8 and 10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

MantisBT cross-site scripting vulnerability (CNVD-2016-03974)

MantisBT is a Web-based open source defect tracking system of the MantisBT team . The system provides project management and defect tracking services in the form of Web operations. MantisBT has a cross-site scripting vulnerability in the custom field management. Allow attackers to exploit the...

CVE-2016-4812

Cross-site scripting XSS vulnerability in the Markdown on Save Improved plugin before 2.5.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-7360

Multiple cross-site scripting XSS vulnerabilities in the Web User Interface WebUI in Fortinet FortiSandbox before 2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 serial parameter to alerts/summary/profile/; the 2 urlForCreatingReport parameter to csearch/report/export/...

EUVD-2022-1928

Cross-site scripting XSS vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn."...

web2py cross-site scripting vulnerability (CNVD-2016-03331)

web2py is a set of open source Web framework written in Python , it supports the rapid development of database-driven Web-based applications . A cross-site scripting vulnerability exists in web2py version 2.14.5. An attacker can exploit this vulnerability to inject arbitrary web script or HTML...

phpMyAdmin Multiple Vulnerabilities -01 (May 2016) - Windows

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...

CVE-2016-1171

Cross-site scripting XSS vulnerability in the Recruit plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Titan Framework plugin before 1.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 t parameter to iframe-googlefont-preview.php or the 2 text parameter to iframe-font-preview.php...

CVE-2015-8766

Multiple cross-site scripting XSS vulnerabilities in content/content.systempreferences.php in Symphony CMS before 2.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 emailsendmailfromname, 2 emailsendmailfromaddress, 3 emailsmtpfromname, 4 emailsmtpfromaddress, 5...

CVE-2015-8376

Multiple cross-site scripting XSS vulnerabilities in Symphony CMS 2.6.3 allow remote attackers to inject arbitrary web script or HTML via the 1 Name, 2 Navigation Group, or 3 Label parameter to blueprints/sections/edit/1...