Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

Cvelist
Cvelistadded 2014/05/13 3:0 p.m.34 views

CVE-2014-3456

Cross-site scripting XSS vulnerability in GitLab Enterprise Edition EE 6.6.0 before 6.6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.00942EPSS
Exploits0References1
NVD
NVDadded 2014/05/13 2:55 p.m.37 views

CVE-2013-1407

Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...

4.3CVSS5.8AI score0.02058EPSS
Exploits3References3
Cvelist
Cvelistadded 2014/05/13 2:0 p.m.48 views

CVE-2013-1407

Multiple cross-site scripting XSS vulnerabilities in the Events Manager plugin before 5.3.5 and Events Manager Pro plugin before 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 scope parameter to index.php; 2 username, 3 dbemphone, 4 useremail, or 5...

5.8AI score0.02058EPSS
Exploits3References3
Prion
Prionadded 2014/05/12 2:55 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via crafted XSL in an SVG file...

4.3CVSS6AI score0.01007EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2014/05/12 2:55 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the TimeMediaHandler extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to videos...

4.3CVSS6.1AI score0.01367EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2014/05/12 2:55 p.m.19 views

CVE-2013-6454

Cross-site scripting XSS vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via a -o-link attribute...

4.3CVSS7.2AI score0.01459EPSS
Exploits0References2
CVE
CVEadded 2014/05/12 2:0 p.m.68 views

CVE-2013-6452

CVE-2013-6452 affects MediaWiki prior to 1.19.10, 1.2x prior to 1.21.4, and 1.22.x prior to 1.22.1. The vulnerability enables remote attackers to inject arbitrary web script or HTML via crafted XSL in an SVG file (XSS). Mitigation: upgrade to fixed MediaWiki versions listed in GLSA 201502-04 or v...

4.3CVSS5.9AI score0.01007EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2014/05/10 1:55 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in HP Network Node Manager i NNMi 9.0, 9.10, and 9.20 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.02491EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2014/05/08 6:42 p.m.12 views

CVE-2014-2854

Cross-site scripting XSS vulnerability in the SemanticTitle extension before 1.1.0 for MediaWiki allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00942EPSS
Exploits0References1
Cvelist
Cvelistadded 2014/05/08 6:0 p.m.15 views

CVE-2014-2854

Cross-site scripting XSS vulnerability in the SemanticTitle extension before 1.1.0 for MediaWiki allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.00942EPSS
Exploits0References1
NVD
NVDadded 2014/05/08 2:29 p.m.9 views

CVE-2014-3123

Cross-site scripting XSS vulnerability in admin/manage-images.php in the NextCellent Gallery plugin before 1.19.18 for WordPress allows remote authenticated users with the NextGEN Upload images, NextGEN Manage gallery, or NextGEN Manage others gallery permission to inject arbitrary web script or...

2.1CVSS5.4AI score0.01589EPSS
Exploits1References4
Prion
Prionadded 2014/05/08 2:29 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin/manage-images.php in the NextCellent Gallery plugin before 1.19.18 for WordPress allows remote authenticated users with the NextGEN Upload images, NextGEN Manage gallery, or NextGEN Manage others gallery permission to inject arbitrary web script or...

2.1CVSS5.8AI score0.01589EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2014/05/07 10:0 a.m.23 views

CVE-2014-2191

Cross-site scripting XSS vulnerability in the web framework in Cisco Broadcast Access Center for Telco and Wireless aka BAC-TW allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCun91113...

5.8AI score0.01351EPSS
Exploits0References2
Prion
Prionadded 2014/05/05 5:6 p.m.18 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Red Hat JBoss Web Framework Kit 2.5.0 allow remote attackers to inject arbitrary web script or HTML via a 1 parameter or 2 id name...

4.3CVSS6AI score0.00994EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2014/05/05 5:0 p.m.21 views

CVE-2013-3736

Cross-site scripting XSS vulnerability in the MobileUI aka RT-Extension-MobileUI extension before 1.04 in Request Tracker RT 4.0.0 before 4.0.13 allows remote attackers to inject arbitrary web script or HTML via the name of an attached file...

5.7AI score0.01161EPSS
Exploits0References4
Cvelist
Cvelistadded 2014/05/02 2:0 p.m.22 views

CVE-2014-1899

Cross-site scripting XSS vulnerability in Citrix NetScaler Gateway formerly Citrix Access Gateway Enterprise Edition 9.x before 9.3.66.5 and 10.x before 10.1.123.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01206EPSS
Exploits0References3
Prion
Prionadded 2014/04/30 2:22 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01366EPSS
Exploits0References1Affected Software1
Prion
Prionadded 2014/04/29 8:55 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to inject arbitrary web script or HTML via the 1 highlight parameter to forum/viewthread.php; or remote authenticated users with certain permissions to inject arbitrary web script or HTML via the...

4.3CVSS5.7AI score0.04404EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCveadded 2014/04/29 2:38 p.m.26 views

CVE-2013-7064

Cross-site scripting XSS vulnerability in the EU Cookie Compliance module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated administrators with the "Administer EU Cookie Compliance popup" permission to inject arbitrary web script or HTML via unspecified configuration values...

2.1CVSS6AI score0.00941EPSS
Exploits0References2
Prion
Prionadded 2014/04/28 2:9 p.m.25 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote attackers to inject arbitrary web script or HTML via the 1 module or 2 message parameter to index.php...

4.3CVSS6.1AI score0.01148EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder