Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

UbuntuCve
UbuntuCveadded 2014/03/14 4:55 p.m.22 views

CVE-2013-2042

Multiple cross-site scripting XSS vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5.11, and 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via the url parameter to 1 apps/bookmarks/ajax/addBookmark.php or 2 apps/bookmarks/ajax/editBookmark.php...

3.5CVSS5.9AI score0.01152EPSS
Exploits0References2
Cvelist
Cvelistadded 2014/03/14 4:0 p.m.20 views

CVE-2012-0891

Multiple cross-site scripting XSS vulnerabilities in Puppet Dashboard 1.0 before 1.2.5 and Enterprise 1.0 before 1.2.5 and 2.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified fields...

5.8AI score0.00942EPSS
Exploits0References1
NVD
NVDadded 2014/03/14 3:55 p.m.27 views

CVE-2013-0297

Multiple cross-site scripting XSS vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 sitename or 2 siteurl parameter to apps/external/ajax/setsites.php...

3.5CVSS5.4AI score0.00819EPSS
Exploits0References1
Prion
Prionadded 2014/03/14 3:55 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted iCalendar file to the calendar application, the 2 dir or 3 file parameter to apps/filespdfviewer/viewer.php, or the 4 mountpoint parameter...

4.3CVSS6AI score0.01005EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2014/03/14 3:55 p.m.22 views

CVE-2013-0297

Multiple cross-site scripting XSS vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 sitename or 2 siteurl parameter to apps/external/ajax/setsites.php...

3.5CVSS5.9AI score0.00819EPSS
Exploits0References2
NVD
NVDadded 2014/03/14 2:55 p.m.17 views

CVE-2013-1759

Cross-site scripting XSS vulnerability in the Responsive Logo Slideshow plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the "URL and Image" field...

4.3CVSS5.8AI score0.02023EPSS
Exploits2References5
Prion
Prionadded 2014/03/14 2:55 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Brother MFC-9970CDW printer with firmware L 1.10 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 val parameter to admin/adminmain.html; 3 id, 4 val, or 5 arbitrary parameter name QUERYSTRING to...

4.3CVSS5.9AI score0.02018EPSS
Exploits4References6Affected Software1
Prion
Prionadded 2014/03/14 2:55 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Responsive Logo Slideshow plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the "URL and Image" field...

4.3CVSS6.2AI score0.02023EPSS
Exploits2References5
Prion
Prionadded 2014/03/14 2:55 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Brother MFC-9970CDW printer with firmware G 1.03 and L 1.10 allows remote attackers to inject arbitrary web script or HTML via an arbitrary parameter name QUERYSTRING to admin/adminmain.html, a different vulnerability than CVE-2013-2507 and...

4.3CVSS6AI score0.02018EPSS
Exploits4References6Affected Software1
Prion
Prionadded 2014/03/14 2:55 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Marekkis Watermark plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the pfad parameter to wp-admin/options-general.php. NOTE: some of these details are obtained from third party information...

4.3CVSS6.3AI score0.02053EPSS
Exploits2References4Affected Software1
Cvelist
Cvelistadded 2014/03/14 2:0 p.m.22 views

CVE-2013-2671

Multiple cross-site scripting XSS vulnerabilities in the Brother MFC-9970CDW printer with firmware L 1.10 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 val parameter to admin/adminmain.html; 3 id, 4 val, or 5 arbitrary parameter name QUERYSTRING to...

5.7AI score0.01327EPSS
Exploits2References6
Cvelist
Cvelistadded 2014/03/14 2:0 p.m.35 views

CVE-2013-2507

Multiple cross-site scripting XSS vulnerabilities in the Brother MFC-9970CDW printer with firmware G 1.03 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to admin/logtonet.html or 2 kind parameter to fax/copysettings.html, a different vulnerability than...

5.7AI score0.02018EPSS
Exploits2References6
Cvelist
Cvelistadded 2014/03/14 2:0 p.m.23 views

CVE-2013-1759

Cross-site scripting XSS vulnerability in the Responsive Logo Slideshow plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the "URL and Image" field...

5.8AI score0.02023EPSS
Exploits2References5
Cvelist
Cvelistadded 2014/03/14 2:0 p.m.15 views

CVE-2014-2325

Multiple cross-site scripting XSS vulnerabilities in Proxmox Mail Gateway before 3.1-5829 allow remote attackers to inject arbitrary web script or HTML via the 1 state parameter to objects/who/index.htm or 2 User email address to quarantine/spam/manage.htm...

5.8AI score0.01221EPSS
Exploits2References3
NVD
NVDadded 2014/03/12 2:55 p.m.38 views

CVE-2013-4649

Cross-site scripting XSS vulnerability in DotNetNuke DNN before 6.2.9 and 7.x before 7.1.1 allows remote attackers to inject arbitrary web script or HTML via the dnnVariable parameter to the default URI...

4.3CVSS5.6AI score0.02456EPSS
Exploits2References4
NVD
NVDadded 2014/03/11 1:0 p.m.15 views

CVE-2013-6944

Cross-site scripting XSS vulnerability in the user interface in the AAA TM vServer in Citrix NetScaler Application Delivery Controller ADC 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vector...

4.3CVSS6.6AI score0.01447EPSS
Exploits0References1
Prion
Prionadded 2014/03/11 1:0 p.m.28 views

Cross site scripting

Cross-site scripting XSS vulnerability in the user interface in the AAA TM vServer in Citrix NetScaler Application Delivery Controller ADC 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vector...

4.3CVSS6.1AI score0.01447EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2014/03/11 1:0 a.m.43 views

CVE-2013-6037

Cross-site scripting XSS vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the msgid parameter...

5.6AI score0.01001EPSS
Exploits2References2
NVD
NVDadded 2014/03/09 1:16 p.m.16 views

CVE-2014-2315

Multiple cross-site scripting XSS vulnerabilities in the Thank You Counter Button plugin 1.8.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 thankscaption, 2 thankscaptionstyle, or 3 thanksstyle parameter to wp-admin/options.php...

4.3CVSS5.9AI score0.02041EPSS
Exploits1References3
NVD
NVDadded 2014/03/09 1:16 p.m.24 views

CVE-2013-1890

Multiple cross-site scripting XSS vulnerabilities in ownCloud Server before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 newname parameter to apps/bookmarks/ajax/renameTag.php or 2 multiple unspecified parameters to unknown files in apps/contacts/ajax/...

4.3CVSS5.7AI score0.01187EPSS
Exploits0References3
Rows per page
Query Builder