Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

Prion
Prionadded 2012/09/18 8:55 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in blockclass.module in the Block Class module before 7.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the class name...

2.1CVSS5.7AI score0.01607EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2012/09/18 8:0 p.m.20 views

CVE-2012-1657

Cross-site scripting XSS vulnerability in blockclass.module in the Block Class module before 7.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the class name...

5.4AI score0.01607EPSS
Exploits0References8
Cvelist
Cvelistadded 2012/09/18 8:0 p.m.23 views

CVE-2012-1658

Cross-site scripting XSS vulnerability in the Read More Link module 6.x-3.x before 6.x-3.1 for Drupal allows remote authenticated users with the access administration pages permission to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.01064EPSS
Exploits0References7
Prion
Prionadded 2012/09/18 2:55 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allow remote attackers to inject arbitrary web script or HTML via a 1 GET parameter, 2 POST parameter, or 3 Referer HTTP header...

4.3CVSS6AI score0.02142EPSS
Exploits0References3Affected Software2
Prion
Prionadded 2012/09/17 8:55 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in webfolio/admin/users/edit in Webfolio CMS 1.1.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 First name, 2 Last name or 3 Email required fields...

4.3CVSS6.1AI score0.01201EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2012/09/17 8:0 p.m.14 views

CVE-2012-1899

Multiple cross-site scripting XSS vulnerabilities in webfolio/admin/users/edit in Webfolio CMS 1.1.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 First name, 2 Last name or 3 Email required fields...

5.8AI score0.01201EPSS
Exploits1References4
Prion
Prionadded 2012/09/17 2:55 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Trend Micro InterScan Messaging Security Suite 7.1-BuildWin321394 allow remote attackers to inject arbitrary web script or HTML via 1 the wrsApprovedURL parameter to addRuleAttrWrsApproveUrl.imss or 2 the src parameter to initUpdSchPage.imss...

4.3CVSS6AI score0.02497EPSS
Exploits4References3Affected Software1
NVD
NVDadded 2012/09/15 5:55 p.m.16 views

CVE-2012-4928

Cross-site scripting XSS vulnerability in owupdates/index.php in Oxwall 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the plugin parameter...

4.3CVSS5.7AI score0.01623EPSS
Exploits1References4
NVD
NVDadded 2012/09/15 5:55 p.m.22 views

CVE-2012-4336

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

4.3CVSS5.7AI score0.01631EPSS
Exploits3References5
Prion
Prionadded 2012/09/15 5:55 p.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.2AI score0.02003EPSS
Exploits3References8Affected Software1
Cvelist
Cvelistadded 2012/09/15 5:0 p.m.25 views

CVE-2012-4928

Cross-site scripting XSS vulnerability in owupdates/index.php in Oxwall 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the plugin parameter...

5.7AI score0.01623EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2012/09/13 8:55 p.m.24 views

CVE-2012-4904

Cross-application scripting vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script via unspecified vectors, as demonstrated by "Universal XSS UXSS" attacks against the current tab...

4.3CVSS6AI score0.00653EPSS
Exploits0References3
CVE
CVEadded 2012/09/13 8:0 p.m.52 views

CVE-2012-4905

The CVE-2012-4905 entry describes a UXSS (Universal XSS) flaw in Chrome for Android prior to 18.0.1025308. By sending a crafted Intent with javascript: URIs and by inserting Extra data (com.android.browser.application_id => com.android.chrome) into an Intent, an attacker could execute arbitrar...

4.3CVSS4.8AI score0.01553EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2012/09/11 6:55 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft Systems Management Server 2003 SP3 and System Center Configuration Manager 2007 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Reflected XSS Vulnerability."...

4.3CVSS5.4AI score0.16162EPSS
Exploits1References4Affected Software2
NVD
NVDadded 2012/09/10 10:55 p.m.11 views

CVE-2012-4891

Cross-site scripting XSS vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector than CVE-2012-4889. NOTE: the provenance of this information is unknown; the details are obtained...

4.3CVSS5.4AI score0.03937EPSS
Exploits1References5
NVD
NVDadded 2012/09/10 10:55 p.m.15 views

CVE-2012-4890

Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 comment to the news, 2 title to the news, or 3 the folder names in a gallery...

4.3CVSS5.6AI score0.01379EPSS
Exploits1References7
NVD
NVDadded 2012/09/10 10:55 p.m.13 views

CVE-2012-4889

Multiple cross-site scripting XSS vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the 1 subTab or 2 tab parameter to createAnomaly.do; 3 url, 4 subTab, or 5 tab parameter to mindex.do; 6 tab parameter to index2.do; or 7 port...

4.3CVSS5.7AI score0.07718EPSS
Exploits1References9
Prion
Prionadded 2012/09/10 10:55 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 comment to the news, 2 title to the news, or 3 the folder names in a gallery...

4.3CVSS5.8AI score0.01379EPSS
Exploits1References7Affected Software1
Prion
Prionadded 2012/09/10 10:55 p.m.24 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titleen, 2 summaryen, or 3 bodyen parameter in a submitnews action to the news module, a different vulnerability than CVE-2012-4890. NOTE...

4.3CVSS5.8AI score0.01379EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2012/09/10 10:0 p.m.16 views

CVE-2012-4891

Cross-site scripting XSS vulnerability in fw/index2.do in ManageEngine Firewall Analyzer 7.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter, a different vector than CVE-2012-4889. NOTE: the provenance of this information is unknown; the details are obtained...

5.4AI score0.03937EPSS
Exploits1References5
Rows per page
Query Builder