Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

NVD
NVDadded 2012/08/23 8:55 p.m.23 views

CVE-2011-5104

Cross-site scripting XSS vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the customtext parameter. NOTE: some of these details are obtained from third party...

4.3CVSS6AI score0.0224EPSS
Exploits1References6
NVD
NVDadded 2012/08/23 8:55 p.m.15 views

CVE-2011-5105

Multiple cross-site scripting XSS vulnerabilities in EmployeeSearch.cc in ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 allow remote attackers to inject arbitrary web script or HTML via the 1 searchType and 2 searchString parameters, a different vulnerability than CVE-2010-3274...

4.3CVSS5.6AI score0.0598EPSS
Exploits1References4
Prion
Prionadded 2012/08/23 8:55 p.m.15 views

Sql injection

Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the SearchField parameter in a search action to 1 categorylist.php, 2 Copyofcalendarlist.php, 3 customerstatisticslist.php, 4 customerlist.php, and 5...

7.5CVSS8.3AI score0.02042EPSS
Exploits1References11Affected Software1
Prion
Prionadded 2012/08/23 8:55 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Authoritative DNS - DNS Zones page in Barracuda Link Balancer 330 Firmware 1.3.2.005 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 zoneid or 2 scope parameter...

4.3CVSS6.1AI score0.00931EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2012/08/23 8:55 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in EmployeeSearch.cc in ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 allow remote attackers to inject arbitrary web script or HTML via the 1 searchType and 2 searchString parameters, a different vulnerability than CVE-2010-3274...

4.3CVSS5.8AI score0.21004EPSS
Exploits3References4Affected Software1
Cvelist
Cvelistadded 2012/08/23 8:0 p.m.26 views

CVE-2011-5104

Cross-site scripting XSS vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the customtext parameter. NOTE: some of these details are obtained from third party...

6AI score0.0224EPSS
Exploits1References6
Cvelist
Cvelistadded 2012/08/23 8:0 p.m.16 views

CVE-2011-5106

Cross-site scripting XSS vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter...

5.8AI score0.10899EPSS
Exploits1References5
CVE
CVEadded 2012/08/23 8:0 p.m.37 views

CVE-2011-5104

CVE-2011-5104 affects the WP e-Commerce plugin (WordPress) in the file wpsc-admin/display-sales-logs.php with a vulnerability in the custom_text parameter, allowing remote attackers to inject arbitrary script/HTML (XSS). The issue is observed in WP e-Commerce 3.8.7.1 and possibly earlier. Remedia...

4.3CVSS6.1AI score0.0224EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2012/08/23 10:0 a.m.28 views

CVE-2012-2582

Multiple cross-site scripting XSS vulnerabilities in Open Ticket Request System OTRS Help Desk 2.4.x before 2.4.13, 3.0.x before 3.0.15, and 3.1.x before 3.1.9, and OTRS ITSM 2.1.x before 2.1.5, 3.0.x before 3.0.6, and 3.1.x before 3.1.6, allow remote attackers to inject arbitrary web script or...

5.5AI score0.04195EPSS
Exploits1References5
Cvelist
Cvelistadded 2012/08/22 10:0 a.m.26 views

CVE-2012-4580

Cross-site scripting XSS vulnerability in McAfee Email and Web Security EWS 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway MEG 7.0 before Patch 1, allows remote attackers to inject arbitrary web script or HTML via vectors related to the McAfee Security Appliance Managemen...

5.7AI score0.01384EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2012/08/21 11:0 p.m.29 views

CVE-2012-4345

Multiple cross-site scripting XSS vulnerabilities in the Database Structure page in phpMyAdmin 3.4.x before 3.4.11.1 and 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via 1 a crafted table name during table creation, or a 2 Empty link or 3 Drop link...

3.5CVSS5.4AI score0.01449EPSS
Exploits1
NVD
NVDadded 2012/08/21 10:46 a.m.24 views

CVE-2012-2985

Cross-site scripting XSS vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the UploadID parameter...

3.5CVSS5.3AI score0.00825EPSS
Exploits0References1
Prion
Prionadded 2012/08/21 10:46 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in InsertDocument.aspx in CuteSoft Cute Editor 6.4 allows remote authenticated users to inject arbitrary web script or HTML via the UploadID parameter...

3.5CVSS5.7AI score0.00825EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2012/08/15 9:55 p.m.16 views

CVE-2012-4342

Multiple cross-site scripting XSS vulnerabilities in Gallery 3 before 3.0.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.0118EPSS
Exploits0References3
NVD
NVDadded 2012/08/15 9:55 p.m.24 views

CVE-2012-2768

Multiple cross-site scripting XSS vulnerabilities in the topic administration page in the RTFM extension 2.0.4 through 2.4.3 for Best Practical Solutions RT allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01187EPSS
Exploits0References5
OSV
OSVadded 2012/08/15 9:55 p.m.7 views

CVE-2012-2768

Multiple cross-site scripting XSS vulnerabilities in the topic administration page in the RTFM extension 2.0.4 through 2.4.3 for Best Practical Solutions RT allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score
Exploits0References6
Prion
Prionadded 2012/08/15 9:55 p.m.19 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the topic administration page in the RTFM extension 2.0.4 through 2.4.3 for Best Practical Solutions RT allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01187EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2012/08/15 9:0 p.m.24 views

CVE-2012-3434

Multiple cross-site scripting XSS vulnerabilities in userperspan.php in the Count Per Day module before 3.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 page, 2 datemin, or 3 datemax parameter...

5.8AI score0.02415EPSS
Exploits1References7
Cvelist
Cvelistadded 2012/08/15 8:0 p.m.34 views

CVE-2012-2570

Cross-site scripting XSS vulnerability in productsmap.php in X-Cart Gold 4.5 allows remote attackers to inject arbitrary web script or HTML via the symb parameter...

5.7AI score0.01663EPSS
Exploits1References5
Cvelist
Cvelistadded 2012/08/15 8:0 p.m.18 views

CVE-2012-4037

Multiple cross-site scripting XSS vulnerabilities in the web client in Transmission before 2.61 allow remote attackers to inject arbitrary web script or HTML via the 1 comment, 2 created by, or 3 name field in a torrent file...

5.5AI score0.01449EPSS
Exploits2References8
Rows per page
Query Builder