Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

Cvelist
Cvelistadded 2013/08/09 7:0 p.m.28 views

CVE-2013-3032

Cross-site scripting XSS vulnerability in the MIME e-mail functionality in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR PTHN986NAA...

5.6AI score0.01158EPSS
Exploits0References3
Prion
Prionadded 2013/08/06 1:20 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM InfoSphere BigInsights 1.1 through 2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.4AI score0.00946EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2013/08/01 1:32 p.m.19 views

CVE-2013-4670

Multiple cross-site scripting XSS vulnerabilities in the management console on the Symantec Web Gateway SWG appliance before 5.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.6AI score0.03673EPSS
Exploits4References6
NVD
NVDadded 2013/07/31 1:20 p.m.12 views

CVE-2013-5020

Multiple cross-site scripting XSS vulnerabilities in bbadmin.php in MiniBB before 3.0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 forumname, 2 forumgroup, 3 forumicon, or 4 forumdesc parameter. NOTE: the whatus vector is already covered by CVE-2008-2066...

4.3CVSS5.7AI score0.01862EPSS
Exploits1References6
NVD
NVDadded 2013/07/31 1:20 p.m.20 views

CVE-2013-2209

Cross-site scripting XSS vulnerability in the auto-complete widget in htdocs/media/rb/js/reviews.js in Review Board 1.6.x before 1.6.17 and 1.7.x before 1.7.10 allows remote attackers to inject arbitrary web script or HTML via a full name...

4.3CVSS5.5AI score0.02164EPSS
Exploits1References7
Prion
Prionadded 2013/07/31 1:20 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in libraries/schema/ExportRelationSchema.class.php in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted pageNumber value to schemaexport.php...

3.5CVSS5.5AI score0.00967EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCveadded 2013/07/31 1:20 p.m.28 views

CVE-2013-4996

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 a crafted database name, 2 a crafted user name, 3 a crafted logo URL in the navigation panel, 4 a...

4.3CVSS6.8AI score0.01832EPSS
Exploits0References3
NVD
NVDadded 2013/07/29 11:27 p.m.16 views

CVE-2013-4140

Cross-site scripting XSS vulnerability in the TinyBox Simple Splash module before 7.x-2.2 for Drupal allows remote authenticated users with the "administer tinybox" permission to inject arbitrary web script or HTML via unspecified vectors...

2.1CVSS5.3AI score0.01089EPSS
Exploits0References8
NVD
NVDadded 2013/07/29 11:27 p.m.25 views

CVE-2013-3515

Multiple cross-site scripting XSS vulnerabilities in OpenX Source 2.8.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 package parameter to www/admin/plugin-index.php or the 2 group parameter to www/admin/plugin-settings.php...

4.3CVSS5.7AI score0.04226EPSS
Exploits5References9
NVD
NVDadded 2013/07/29 11:27 p.m.15 views

CVE-2013-2181

Cross-site scripting XSS vulnerability in the Directory Listing plugin in Monkey HTTP Daemon monkeyd 1.2.2 allows attackers to inject arbitrary web script or HTML via a file name...

4.3CVSS5.5AI score0.0267EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2013/07/29 11:27 p.m.21 views

CVE-2013-2181

Cross-site scripting XSS vulnerability in the Directory Listing plugin in Monkey HTTP Daemon monkeyd 1.2.2 allows attackers to inject arbitrary web script or HTML via a file name...

4.3CVSS6AI score0.0267EPSS
Exploits1References1
Cvelist
Cvelistadded 2013/07/29 10:0 p.m.21 views

CVE-2013-4140

Cross-site scripting XSS vulnerability in the TinyBox Simple Splash module before 7.x-2.2 for Drupal allows remote authenticated users with the "administer tinybox" permission to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.01089EPSS
Exploits0References8
Cvelist
Cvelistadded 2013/07/29 9:0 p.m.17 views

CVE-2013-4944

Cross-site scripting XSS vulnerability in the BuddyPress Extended Friendship Request plugin before 1.0.2 for WordPress, when the "Friend Connections" component is enabled, allows remote attackers to inject arbitrary web script or HTML via the friendshiprequestmessage parameter to...

5.8AI score0.02072EPSS
Exploits0References4
Cvelist
Cvelistadded 2013/07/29 9:0 p.m.13 views

CVE-2013-2181

Cross-site scripting XSS vulnerability in the Directory Listing plugin in Monkey HTTP Daemon monkeyd 1.2.2 allows attackers to inject arbitrary web script or HTML via a file name...

5.5AI score0.0267EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2013/07/29 1:59 p.m.35 views

CVE-2013-4941

Cross-site scripting XSS vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 3.2.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary we...

4.3CVSS6AI score0.01187EPSS
Exploits0References4
Prion
Prionadded 2013/07/29 1:59 p.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 3.2.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary we...

4.3CVSS6.1AI score0.01187EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCveadded 2013/07/29 1:59 p.m.32 views

CVE-2013-4942

Cross-site scripting XSS vulnerability in flashuploader.swf in the Uploader component in Yahoo! YUI 3.5.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitra...

4.3CVSS6AI score0.01187EPSS
Exploits0References4
Prion
Prionadded 2013/07/25 11:59 a.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the help pages in Web\Content\Help\ in the Web Client in IBM Cognos Command Center aka Star Command Center or Star Analytics before 10.1, when Internet Explorer is used, allow remote authenticated users to inject arbitrary web script or HTML vi...

3.5CVSS5.5AI score0.00946EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2013/07/24 2:0 p.m.17 views

CVE-2013-3999

Cross-site scripting XSS vulnerability in IBM Social Media Analytics 1.2 before FP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.5AI score0.01148EPSS
Exploits0References3
NVD
NVDadded 2013/07/23 5:20 p.m.17 views

CVE-2013-3439

Cross-site scripting XSS vulnerability in Cisco Unified Operations Manager allows remote attackers to inject arbitrary web script or HTML via a crafted URL in an unspecified HTTP header field, aka Bug ID CSCud80182...

4.3CVSS5.7AI score0.01792EPSS
Exploits0References5
Rows per page
Query Builder