CVE-2014-2336

Multiple cross-site scripting XSS vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 and FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2334 and CVE-2014-2335...

CVE-2014-2335

Multiple cross-site scripting XSS vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2336...

CVE-2014-3375

Multiple cross-site scripting XSS vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90582...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550...

CVE-2014-3375

Multiple cross-site scripting XSS vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Etiko CMS allow remote attackers to inject arbitrary web script or HTML via the 1 pageid parameter to loja/index.php or 2 articleid parameter to index.php...

CVE-2014-4023

Cross-site scripting XSS vulnerability in tmui/dashboard/echo.jsp in the Configuration utility in F5 BIG-IP LTM, APM, ASM, GTM, and Link Controller 11.0.0 before 11.6.0 and 10.1.0 through 10.2.4, AAM 11.4.0 before 11.6.0, AFM and PEM 11.3.0 before 11.6.0, Analytics 11.0.0 through 11.5.1, Edge...

CVE-2014-4586

Multiple cross-site scripting XSS vulnerabilities in the wp-football plugin 1.1 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the league parameter to 1 footballclassification.php, 2 footballcriteria.php, 3 templates/templatedefaultpreview.php, or 4...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in OpenMRS 2.1 Standalone Edition allow remote attackers to inject arbitrary web script or HTML via the 1 givenName, 2 familyName, 3 address1, or 4 address2 parameter to registrationapp/registerPatient.page; the 5 comment parameter to...

CVE-2014-7182

Multiple cross-site scripting XSS vulnerabilities in the WP Google Maps plugin before 6.0.27 for WordPress allow remote attackers to inject arbitrary web script or HTML via the polyid parameter in an 1 editpoly, 2 editpolyline, or 3 editmarker action in the wp-google-maps-menu page to...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the WP Google Maps plugin before 6.0.27 for WordPress allow remote attackers to inject arbitrary web script or HTML via the polyid parameter in an 1 editpoly, 2 editpolyline, or 3 editmarker action in the wp-google-maps-menu page to...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the 1 dateFrom or 2 dateTo parameter...

CVE-2014-7183

Multiple cross-site scripting XSS vulnerabilities in the search.php in LiteCart 1.1.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 query parameter or 2 QUERYSTRING...

CVE-2014-8381

Multiple cross-site scripting XSS vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the 1 dateFrom or 2 dateTo parameter...

CVE-2014-3111

Multiple cross-site scripting XSS vulnerabilities in FOG 0.27 through 0.32 allow remote authenticated users to inject arbitrary web script or HTML via the 1 Printer Model field to the Printer Management page, 2 Image Name field to the Image Management page, 3 Storage Group Name field to the Stora...

Cross site scripting

Cross-site scripting XSS vulnerability in the TableField module 7.x-2.x before 7.x-2.3 allows remote authenticated users with the "administer content types" or "administer taxonomy" permission to inject arbitrary web script or HTML via vectors related to the field help text in an entity edit form...

Cross site scripting

Cross-site scripting XSS vulnerability in Splunk 6.1.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer Header in a "404 Not Found" response. NOTE: this vulnerability might exist because of a CVE-2010-2429 regression...