Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

Prion
Prionadded 2015/01/15 3:59 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in redirlastpostlist.php in SoftBB 0.1.3 allows remote attackers to inject arbitrary web script or HTML via the post parameter...

4.3CVSS6.1AI score0.01936EPSS
Exploits1References4Affected Software1
Prion
Prionadded 2015/01/15 3:59 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the poll archive in PHPKIT 1.6.6 Build 160014 allows remote attackers to inject arbitrary web script or HTML via the result parameter to uploadfiles/pk/include.php...

4.3CVSS6.2AI score0.01892EPSS
Exploits1References5Affected Software1
Prion
Prionadded 2015/01/15 3:59 p.m.7 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administrative backend in BEdita 3.4.0 allow remote authenticated users to inject arbitrary web script or HTML via the 1 lrealname field in the editProfile form to index.php/home/profile; the 2 datatitle or 3 datadescription field in the...

3.5CVSS5.7AI score0.01618EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2015/01/15 3:0 p.m.32 views

CVE-2014-7956

Cross-site scripting XSS vulnerability in the Pods plugin before 2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter in an edit action in the pods page to wp-admin/admin.php...

5.8AI score0.02041EPSS
Exploits2References4
NVD
NVDadded 2015/01/13 3:59 p.m.13 views

CVE-2014-100027

Cross-site scripting XSS vulnerability in the WP SlimStat plugin before 3.5.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

4.3CVSS5.7AI score0.02023EPSS
Exploits1References4
NVD
NVDadded 2015/01/13 3:59 p.m.20 views

CVE-2014-100018

Cross-site scripting XSS vulnerability in the Unconfirmed plugin before 1.2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter in the unconfirmed page to wp-admin/network/users.php...

4.3CVSS5.8AI score0.02032EPSS
Exploits1References4
Prion
Prionadded 2015/01/13 3:59 p.m.8 views

Cross site scripting

Cross-site scripting XSS vulnerability in /signup in WEBCrafted allows remote attackers to inject arbitrary web script or HTML via the username...

4.3CVSS6.1AI score0.01854EPSS
Exploits1References4
Prion
Prionadded 2015/01/13 3:59 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in readme.php in the April's Super Functions Pack plugin before 1.4.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS6.3AI score0.01948EPSS
Exploits0References5Affected Software1
Prion
Prionadded 2015/01/13 3:59 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in top.html in the Airties Air 6372 modem allows remote attackers to inject arbitrary web script or HTML via the productboardtype parameter...

4.3CVSS6.1AI score0.01427EPSS
Exploits1References2
Prion
Prionadded 2015/01/13 3:59 p.m.9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to inject arbitrary web script or HTML via the 1 sEcho parameter to commentspaginate.php or 2 storespaginate.php or the 3 affiliateurl, 4 description, 5 domain, 6...

4.3CVSS6AI score0.03496EPSS
Exploits1References8Affected Software1
Prion
Prionadded 2015/01/13 3:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in FlatPress 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter to the default URI...

4.3CVSS6.2AI score0.01892EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2015/01/13 3:0 p.m.37 views

CVE-2014-100026

The CVE-2014-100026 entry corresponds to a readme.php-based XSS in WordPress plugin “April’s Super Functions Pack” prior to version 1.4.8. The vulnerability allows an attacker to inject arbitrary script or HTML via the page parameter, enabling cross-site scripting. The affected product is the Wor...

4.3CVSS6AI score0.01948EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2015/01/13 3:0 p.m.18 views

CVE-2014-100030

Cross-site scripting XSS vulnerability in module/search/function.php in Ganesha Digital Library GDL 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action...

5.7AI score0.03247EPSS
Exploits1References3
Cvelist
Cvelistadded 2015/01/13 3:0 p.m.17 views

CVE-2014-100028

Cross-site scripting XSS vulnerability in /signup in WEBCrafted allows remote attackers to inject arbitrary web script or HTML via the username...

5.7AI score0.01854EPSS
Exploits1References4
NVD
NVDadded 2015/01/13 11:59 a.m.15 views

CVE-2014-10003

Multiple cross-site scripting XSS vulnerabilities in Maian Uploader 4.0 allow remote attackers to inject arbitrary web script or HTML via the width parameter to 1 uploader/admin/js/loadflv.js.php or 2 uploader/js/loadflv.js.php...

4.3CVSS5.8AI score0.01854EPSS
Exploits2References3
NVD
NVDadded 2015/01/13 11:59 a.m.9 views

CVE-2014-100007

Cross-site scripting XSS vulnerability in the HK Exif Tags plugin before 1.12 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via an EXIF tag. NOTE: some of these details are obtained from third party information...

4.3CVSS5.4AI score0.01959EPSS
Exploits0References3
Prion
Prionadded 2015/01/13 11:59 a.m.8 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Stark CRM 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, or 3 notes parameter to the client page; 4 insuname or 5 price parameter to the addinsurancecat page; or 6 status parameter to the...

4.3CVSS6.1AI score0.01815EPSS
Exploits1References4Affected Software1
Prion
Prionadded 2015/01/13 11:59 a.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in D-Link DAP-1360 router with firmware 2.5.4 and later allows remote attackers to inject arbitrary web script or HTML via the resbuf parameter to index.cgi when resconfigid is set to 41...

4.3CVSS6.2AI score0.00995EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2015/01/13 11:0 a.m.18 views

CVE-2014-10009

Multiple cross-site scripting XSS vulnerabilities in Stark CRM 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, or 3 notes parameter to the client page; 4 insuname or 5 price parameter to the addinsurancecat page; or 6 status parameter to the...

5.8AI score0.01815EPSS
Exploits1References4
Patchstack
Patchstackadded 2015/01/12 12:0 a.m.8 views

WordPress Page Builder Plugin <= 2.0.3 - Reflected XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder