CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6892 matches found

Prion•added 2012/02/18 12:55 a.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter in a view action to index.cgi, related to the log file viewer, a different vulnerability than...

4.3CVSS6AI score0.02507EPSS

Exploits1References6Affected Software1

Debian CVE•added 2012/02/18 12:0 a.m.•16 views

CVE-2011-4923

4.3CVSS5.6AI score0.02108EPSS

Exploits0

Cvelist•added 2012/02/18 12:0 a.m.•26 views

CVE-2011-4923

5.5AI score0.02108EPSS

Exploits0References6

Cvelist•added 2012/02/15 1:0 a.m.•22 views

CVE-2012-0765

Multiple cross-site scripting XSS vulnerabilities in Adobe RoboHelp 8 and 9 for Word allow remote attackers to inject arbitrary web script or HTML via a crafted URL, related to certain .htm files in 1 templatestock and 2 templatecsh directories...

5.7AI score0.02645EPSS

Exploits1References6

NVD•added 2012/02/14 5:55 p.m.•15 views

CVE-2012-1070

Cross-site scripting XSS vulnerability in the Modern FAQ irfaq extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to the "return url parameter."...

4.3CVSS5.9AI score0.01148EPSS

Exploits0References4

Prion•added 2012/02/14 5:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Terminal PHP Shell terminal extension 0.3.2 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.8AI score0.00925EPSS

Exploits0References3Affected Software1

Prion•added 2012/02/14 5:55 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the rcajax function in core.php in the WP-RecentComments plugin before 2.0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter, related to AJAX paging...

4.3CVSS6.2AI score0.0214EPSS

Exploits0References6Affected Software1

Prion•added 2012/02/14 5:55 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar...

4.3CVSS6.1AI score0.01187EPSS

Exploits1References3Affected Software1

Prion•added 2012/02/14 5:55 p.m.•16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the BE User Switch beuserswitch extension 0.0.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01148EPSS

Exploits0References4Affected Software1

Prion•added 2012/02/14 5:55 p.m.•10 views

Cross site scripting

4.3CVSS6.3AI score0.01148EPSS

Exploits0References4Affected Software1

Prion•added 2012/02/14 12:55 a.m.•13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in revisioningtheme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the 1 tags or 2 ter...

2.1CVSS5.7AI score0.01062EPSS

Exploits1References6Affected Software1

NVD•added 2012/02/13 7:55 p.m.•23 views

CVE-2012-1049

Multiple cross-site scripting XSS vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote attackers to inject arbitrary web script or HTML via the 1 domainName parameter to jsp/AddDC.jsp or 2 operation parameter to DomainConfig.do...

4.3CVSS5.7AI score0.01644EPSS

Exploits2References5

Prion•added 2012/02/13 7:55 p.m.•15 views

Cross site scripting

4.3CVSS6.1AI score0.01644EPSS

Exploits2References5Affected Software1

Prion•added 2012/02/12 10:55 p.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author privileges to inject arbitrary web script or HTML via 1 the profile parameter to extensions/profiledevkit/content/content.profile.php, as...

3.5CVSS5.9AI score0.01866EPSS

Exploits0References9Affected Software1

NVD•added 2012/02/12 10:55 p.m.•16 views

CVE-2011-4340

3.5CVSS5.6AI score0.01866EPSS

Exploits0References9

Cvelist•added 2012/02/12 10:0 p.m.•21 views

CVE-2011-4340

5.6AI score0.01866EPSS

Exploits0References9

Prion•added 2012/02/10 7:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Invensys Wonderware HMI Reports 3.42.835.0304 and earlier, as used in Ocean Data Systems Dream Report before 4.0 and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...

4.3CVSS6.2AI score0.01397EPSS

Exploits0References4Affected Software2

Prion•added 2012/02/08 11:55 a.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the admin interface in EPiServer CMS through 6R2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01148EPSS

Exploits0References4Affected Software1

Prion•added 2012/02/08 4:11 a.m.•15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in UI/Register.pm in Foswiki before 1.1.5 allow remote authenticated users with CHANGE privileges to inject arbitrary web script or HTML via the 1 text, 2 FirstName, 3 LastName, 4 OrganisationName, 5 OrganisationUrl, 6 Profession, 7 Country, 8...

2.1CVSS5.7AI score0.01425EPSS

Exploits1References5Affected Software1

NVD•added 2012/02/08 12:55 a.m.•18 views

CVE-2012-1028

Cross-site scripting XSS vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter...

4.3CVSS5.7AI score0.01612EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by