CVE-2012-5177

Cross-site scripting XSS vulnerability in the Welcart plugin before 1.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-4972

Multiple cross-site scripting XSS vulnerabilities in Layton Helpbox 4.4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 syssolutionid, 2 sysrequesttypeid, 3 sysproblemdesc, 4 syssolutiondesc, 5 sysproblemsummary, 6 usrActiontesting, 7 usrEscalation, or 8...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Layton Helpbox 4.4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 syssolutionid, 2 sysrequesttypeid, 3 sysproblemdesc, 4 syssolutiondesc, 5 sysproblemsummary, 6 usrActiontesting, 7 usrEscalation, or 8...

CVE-2012-4972

Multiple cross-site scripting XSS vulnerabilities in Layton Helpbox 4.4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 syssolutionid, 2 sysrequesttypeid, 3 sysproblemdesc, 4 syssolutiondesc, 5 sysproblemsummary, 6 usrActiontesting, 7 usrEscalation, or 8...

CVE-2012-6312

Cross-site scripting XSS vulnerability in the Video Lead Form plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the errMsg parameter in a video-lead-form action to wp-admin/admin.php...

CVE-2012-3272

Cross-site scripting XSS vulnerability on the HP Color LaserJet CM3530 with firmware before 53.190.9, Color LaserJet CM60xx with firmware before 52.210.9, Color LaserJet CP3525 with firmware before 06.140.3 18, Color LaserJet CP4xxx with firmware before 07.120.6, Color LaserJet CP6015 with firmwa...

Cross site scripting

Cross-site scripting XSS vulnerability in KENT-WEB ACCESS REPORT 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to access-log data...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities on the Forescout CounterACT NAC device before 7.0 allow remote attackers to inject arbitrary web script or HTML via 1 the a parameter to assets/login or 2 the query parameter to assets/rangesearch...

CVE-2012-4983

Multiple cross-site scripting XSS vulnerabilities on the Forescout CounterACT NAC device before 7.0 allow remote attackers to inject arbitrary web script or HTML via 1 the a parameter to assets/login or 2 the query parameter to assets/rangesearch...

CVE-2012-5540

Multiple cross-site scripting XSS vulnerabilities in the Hostip module 6.x-2.x before 6.x-2.2 and 7.x-2.x before 7.x-2.2 for Drupal allow remote attackers with control of hostip.info to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Twitter Pull module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.0-rc3 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "data coming from Twitter."...

CVE-2012-5553

Multiple cross-site scripting XSS vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM Maximenu" permission to inject arbitrary web script or HTML via the 1 Menu Title 2 Link Title, 3 Path...

CVE-2012-5538

Cross-site scripting XSS vulnerability in the FileField Sources module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.6 for Drupal, when the field has "Reference existing" source enabled, allows remote authenticated users to inject arbitrary web script or HTML via the filename of an uploaded fil...

CVE-2012-5540

Multiple cross-site scripting XSS vulnerabilities in the Hostip module 6.x-2.x before 6.x-2.2 and 7.x-2.x before 7.x-2.2 for Drupal allow remote attackers with control of hostip.info to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in EMC RSA Adaptive Authentication On-Premise AAOP before 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in OpenText ECM formerly Livelink ECM 9.7.1 allow remote attackers to inject arbitrary web script or HTML via the 1 viewType and 2 sort parameters in a browse action to livelink/livelink; and the 3 nodeid, 4 setctx, and 5 support parameters to...

CVE-2010-5284

Multiple cross-site scripting XSS vulnerabilities in Collabtive 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the 1 User parameter in the edit user profile feature to manageuser.php, 2 y parameter in a newcal action to manageajax.php, and the 3 pic parameter to thumb.php...

CVE-2010-5282

Multiple cross-site scripting XSS vulnerabilities in OpenText ECM formerly Livelink ECM 9.7.1 allow remote attackers to inject arbitrary web script or HTML via the 1 viewType and 2 sort parameters in a browse action to livelink/livelink; and the 3 nodeid, 4 setctx, and 5 support parameters to...

Cross site scripting

Cross-site scripting XSS vulnerability in users.php in File King Advanced File Management 1.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in downloads.php in PHP-Fusion 7.02.04 allows remote attackers to inject arbitrary web script or HTML via the catid parameter...