CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6892 matches found

Prion•added 2015/08/18 5:59 p.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Mobile sliding menu module 7.x-2.x before 7.x-2.1 for Drupal allows remote authenticated users with the "administer menu" permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.6AI score0.00949EPSS

Exploits0References3Affected Software1

Cvelist•added 2015/08/18 5:0 p.m.•14 views

CVE-2015-5500

Cross-site scripting XSS vulnerability in the Navigate module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.00774EPSS

Exploits0References2

Cvelist•added 2015/08/18 5:0 p.m.•16 views

CVE-2015-5495

5.3AI score0.00949EPSS

Exploits0References3

Cvelist•added 2015/08/18 5:0 p.m.•16 views

CVE-2015-5507

Cross-site scripting XSS vulnerability in the Inline Entity Form module 7.x-1.x before 7.x-1.6 for Drupal allows remote authenticated users with permission to create or edit fields to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.01805EPSS

Exploits0References4

NVD•added 2015/08/18 3:59 p.m.•21 views

CVE-2015-6514

Cross-site scripting XSS vulnerability in the Dashboard in Splunk Enterprise 6.2.x before 6.2.4 and Splunk Light 6.2.x before 6.2.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.3AI score0.0136EPSS

Exploits0References2

Prion•added 2015/08/18 3:59 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Event Import page import-eventbrite-events.php in the Modern Tribe Eventbrite Tickets plugin before 3.10.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "error" parameter to wp-admin/edit.php...

4.3CVSS6.3AI score0.02067EPSS

Exploits2References4Affected Software1

Prion•added 2015/08/18 3:59 p.m.•17 views

Cross site scripting

4.3CVSS5.7AI score0.0136EPSS

Exploits0References2Affected Software1

Cvelist•added 2015/08/18 3:0 p.m.•20 views

CVE-2015-5485

5.8AI score0.02067EPSS

Exploits2References4

Cvelist•added 2015/08/18 3:0 p.m.•26 views

CVE-2015-6515

Cross-site scripting XSS vulnerability in Splunk Web in Splunk Enterprise 6.2.x before 6.2.4, 6.1.x before 6.1.8, 6.0.x before 6.0.9, and 5.0.x before 5.0.13 and Splunk Light 6.2.x before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via a header...

5.7AI score0.0136EPSS

Exploits0References2

Cvelist•added 2015/08/18 3:0 p.m.•22 views

CVE-2015-6514

5.3AI score0.0136EPSS

Exploits0References2

Prion•added 2015/08/17 3:59 p.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the httpdHtmlError function in network/httpd.c in the web interface in VideoLAN VLC Media Player before 2.2.0 allows remote attackers to inject arbitrary web script or HTML via the path info...

4.3CVSS6.1AI score0.01906EPSS

Exploits1References4Affected Software1

UbuntuCve•added 2015/08/17 3:59 p.m.•23 views

CVE-2014-9743

4.3CVSS6.2AI score0.01906EPSS

Exploits1References3

NVD•added 2015/08/16 11:59 p.m.•17 views

CVE-2015-3781

Cross-site scripting XSS vulnerability in Quick Look in Apple OS X before 10.10.5 allows remote attackers to inject arbitrary web script or HTML via a previously visited web site that is rendered during a Quick Look search...

4.3CVSS5.2AI score0.01728EPSS

Exploits0References4

Prion•added 2015/08/16 11:59 p.m.•14 views

Cross site scripting

4.3CVSS5.5AI score0.01728EPSS

Exploits0References4Affected Software1

Cvelist•added 2015/08/16 11:0 p.m.•18 views

CVE-2015-3781

7.2AI score0.01728EPSS

Exploits0References4

Prion•added 2015/08/11 2:59 p.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the DHCP Monitor page in the Web User Interface WebUI in Fortinet FortiOS before 5.2.4 on FortiGate devices allows remote attackers to inject arbitrary web script or HTML via a crafted hostname...

4.3CVSS6.1AI score0.01184EPSS

Exploits0References4Affected Software1

Prion•added 2015/08/04 1:59 a.m.•10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the web-server component in MNS before 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01487EPSS

Exploits0References3Affected Software2

Patchstack•added 2015/08/04 12:0 a.m.•32 views

WordPress <= 4.2.3 - XSS #2

This vulnerability exists in the WPNavMenuWidget class in wp-includes/default-widgets.php in the "form" function. It allows remote attackers to inject arbitrary web script or HTML via a widget title. Related records: http://db.threatpress.com/vulnerability/wordpress/wordpress-4-2-3-xss Solution...

4.3CVSS4.1AI score0.0801EPSS

Exploits0References1Affected Software1

NVD•added 2015/08/03 2:59 p.m.•26 views

CVE-2015-5622

Cross-site scripting XSS vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the Author or Contributor role to place a crafted shortcode inside an HTML element, related to wp-includes/kses.php and wp-includes/shortcodes.ph...

3.5CVSS5.8AI score0.05633EPSS

Exploits1References11

UbuntuCve•added 2015/08/03 2:59 p.m.•40 views

CVE-2015-5622

3.5CVSS6.4AI score0.05633EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by