Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6892 matches found

Prion
Prionadded 2011/11/29 11:55 a.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in view/frontend-head.php in the Flowplayer plugin before 1.2.12 for WordPress allows remote attackers to inject arbitrary web script or HTML via the URI...

4.3CVSS6.2AI score0.01937EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2011/11/29 12:55 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Hastymail2 2.1.1 before RC2 allows remote attackers to inject arbitrary web script or HTML via the rs parameter in a mailbox Drafts action...

4.3CVSS6.1AI score0.0161EPSS
Exploits1References3Affected Software1
NVD
NVDadded 2011/11/28 9:55 p.m.20 views

CVE-2011-4564

Cross-site scripting XSS vulnerability in the admin script in Active CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter in a module action...

4.3CVSS5.7AI score0.01612EPSS
Exploits1References4
NVD
NVDadded 2011/11/28 9:55 p.m.22 views

CVE-2011-4560

Cross-site scripting XSS vulnerability in the Petition Node module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors related to signing a petition...

3.5CVSS5.3AI score0.00935EPSS
Exploits0References5
Prion
Prionadded 2011/11/28 9:55 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in 1 view/admin/logitem.php and 2 view/admin/logitemdetails.php in the Redirection plugin 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the Referer HTTP header in a request to a post that does not exist...

4.3CVSS6.1AI score0.02483EPSS
Exploits1References8Affected Software1
Cvelist
Cvelistadded 2011/11/28 9:0 p.m.22 views

CVE-2011-4562

Multiple cross-site scripting XSS vulnerabilities in 1 view/admin/logitem.php and 2 view/admin/logitemdetails.php in the Redirection plugin 2.2.9 for WordPress allow remote attackers to inject arbitrary web script or HTML via the Referer HTTP header in a request to a post that does not exist...

6.2AI score0.02483EPSS
Exploits1References8
NVD
NVDadded 2011/11/28 11:55 a.m.15 views

CVE-2011-4335

Multiple cross-site scripting XSS vulnerabilities in Contao before 2.10.2 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php in a 1 teachers.html or 2 teachers/ action...

4.3CVSS5.7AI score0.01624EPSS
Exploits0References5
NVD
NVDadded 2011/11/28 11:55 a.m.18 views

CVE-2011-4329

Multiple cross-site scripting XSS vulnerabilities in Dolibarr 3.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the username parameter in a setup action to admin/company.php, or the PATHINFO to 2 admin/securityother.php, 3 admin/events.php, or 4 admin/user.php...

4.3CVSS5.7AI score0.0236EPSS
Exploits0References5
Prion
Prionadded 2011/11/24 4:1 a.m.9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the commenting system in Review Board before 1.5.7 and 1.6.x before 1.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving the 1 diff viewer or 2 screenshot component...

4.3CVSS6AI score0.02336EPSS
Exploits0References9Affected Software1
NVD
NVDadded 2011/11/23 1:55 a.m.15 views

CVE-2010-5050

Cross-site scripting XSS vulnerability in jsp/admin/tools/remoteshare.jsp in ManageEngine ADManager Plus 4.4.0 allows remote attackers to inject arbitrary web script or HTML via the computerName parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...

4.3CVSS5.6AI score0.03335EPSS
Exploits0References4
NVD
NVDadded 2011/11/23 1:55 a.m.18 views

CVE-2010-5052

Cross-site scripting XSS vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val parameter...

4.3CVSS5.7AI score0.03161EPSS
Exploits1References3
Prion
Prionadded 2011/11/23 1:55 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in jsp/admin/tools/remoteshare.jsp in ManageEngine ADManager Plus 4.4.0 allows remote attackers to inject arbitrary web script or HTML via the computerName parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...

4.3CVSS6AI score0.03335EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2011/11/16 10:55 p.m.24 views

Cross site scripting

Cross-site scripting XSS vulnerability in HP Network Node Manager i NNMi 9.0x and 9.1x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-4156...

4.3CVSS5.9AI score0.02463EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2011/11/15 3:57 a.m.25 views

CVE-2011-2771

Multiple cross-site scripting XSS vulnerabilities in Mahara before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via vectors related to 1 URI attributes and 2 the External Feed component, as demonstrated by the guid element in an RSS feed...

4.3CVSS5.6AI score0.01903EPSS
Exploits1References5
OpenVAS
OpenVASadded 2011/11/14 12:0 a.m.27 views

Mozilla Products XSS and Memory Corruption Vulnerabilities (Windows)

The host is installed with Mozilla firefox/thunderbird and is prone to cross site scripting and memory corruption vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtsxssnmemcrptnvulnwin.nasl 7006 2017-08-25 11:51:20Z teissa $ Mozilla Products XSS and Memory Corruption Vulnerabilities...

9.3CVSS0.5AI score0.0233EPSS
Exploits0References2
NVD
NVDadded 2011/11/12 12:55 a.m.13 views

CVE-2011-4436

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.8AI score0.0074EPSS
Exploits0References2
Cvelist
Cvelistadded 2011/11/12 12:0 a.m.16 views

CVE-2011-4436

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8AI score0.0074EPSS
Exploits0References2
NVD
NVDadded 2011/11/09 8:55 p.m.18 views

CVE-2011-3998

Cross-site scripting XSS vulnerability in Apple WebObjects 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.3AI score0.00845EPSS
Exploits1References2
Prion
Prionadded 2011/11/09 8:55 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Apple WebObjects 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00845EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2011/11/03 5:55 p.m.21 views

CVE-2011-4277

Cross-site scripting XSS vulnerability in CourseForum ProjectForum 7.0.1.3038 allows remote attackers to inject arbitrary web script or HTML via a crafted name of an object within a more object on a wiki page...

4.3CVSS5.6AI score0.00918EPSS
Exploits0References1
Rows per page
Query Builder