CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6892 matches found

NVD•added 2011/10/28 2:49 a.m.•14 views

CVE-2011-1360

Multiple cross-site scripting XSS vulnerabilities in IBM HTTP Server 2.0.47 and earlier, as used in WebSphere Application Server and other products, allow remote attackers to inject arbitrary web script or HTML via vectors involving unspecified documentation files in 1 manual/ibm/ and 2...

4.3CVSS5.6AI score0.01674EPSS

Exploits0References4

Cvelist•added 2011/10/28 1:0 a.m.•21 views

CVE-2011-1360

5.6AI score0.01674EPSS

Exploits0References4

Prion•added 2011/10/25 7:55 p.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the appcache internals page in Google Chrome before 15.0.874.102 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00855EPSS

Exploits0References4Affected Software1

Prion•added 2011/10/24 6:55 p.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via 1 an e-mail address field or 2 a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984...

4.3CVSS5.8AI score0.01656EPSS

Exploits0References1Affected Software1

Cvelist•added 2011/10/24 6:0 p.m.•23 views

CVE-2011-4172

5.7AI score0.00855EPSS

Exploits0References1

NVD•added 2011/10/23 10:55 a.m.•23 views

CVE-2011-3635

Cross-site scripting XSS vulnerability in the themeadiumappendmessage function in empathy-theme-adium.c in the Adium theme in libempathy-gtk in Empathy 3.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted alias aka nickname...

4.3CVSS5.4AI score0.01291EPSS

Exploits0References7

Prion•added 2011/10/23 10:55 a.m.•15 views

Cross site scripting

4.3CVSS5.8AI score0.01291EPSS

Exploits0References7Affected Software1

UbuntuCve•added 2011/10/23 12:0 a.m.•29 views

CVE-2011-4170

4.3CVSS6AI score0.00895EPSS

Exploits0References2

UbuntuCve•added 2011/10/21 6:55 p.m.•20 views

CVE-2011-4024

Cross-site scripting XSS vulnerability in ocsinventory in OCS Inventory NG 2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.04699EPSS

Exploits6References1

Cvelist•added 2011/10/21 6:0 p.m.•26 views

CVE-2011-4024

Cross-site scripting XSS vulnerability in ocsinventory in OCS Inventory NG 2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.4AI score0.04699EPSS

Exploits6References8

Prion•added 2011/10/21 10:55 a.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable...

4.3CVSS6.2AI score0.02557EPSS

Exploits1References1Affected Software1

NVD•added 2011/10/14 10:55 a.m.•18 views

CVE-2011-3254

Cross-site scripting XSS vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary web script or HTML via an invitation note...

4.3CVSS5AI score0.01274EPSS

Exploits0References2

Prion•added 2011/10/12 2:52 a.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft Forefront Unified Access Gateway UAG 2010 Gold, Update 1, Update 2, and SP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Default Reflected XSS Vulnerability."...

4.3CVSS5.4AI score0.08397EPSS

Exploits0References2Affected Software1

NVD•added 2011/10/09 10:55 a.m.•17 views

CVE-2010-4951

Cross-site scripting XSS vulnerability in the xaJax Shoutbox vxxajaxshoutbox extension before 1.0.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01042EPSS

Exploits0References3

Prion•added 2011/10/09 10:55 a.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the xaJax Shoutbox vxxajaxshoutbox extension before 1.0.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01042EPSS

Exploits0References3Affected Software1

Cvelist•added 2011/10/09 10:0 a.m.•19 views

CVE-2010-4956

Cross-site scripting XSS vulnerability in the Questionnaire kequestionnaire extension before 2.2.3 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01223EPSS

Exploits0References6

Prion•added 2011/10/08 10:55 a.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in core/showsite.php in chillyCMS 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter aka the username field. NOTE: some of these details are obtained from third party information...

4.3CVSS6.2AI score0.02258EPSS

Exploits0References9Affected Software1

Prion•added 2011/10/08 10:55 a.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in zp-core/admin.php in Zenphoto 1.3 allows remote attackers to inject arbitrary web script or HTML via the user parameter. NOTE: the from parameter is already covered by CVE-2009-4562...

4.3CVSS6AI score0.03108EPSS

Exploits0References6Affected Software1

Cvelist•added 2011/10/08 10:0 a.m.•25 views

CVE-2010-4913

Cross-site scripting XSS vulnerability in the search feature in ColdGen ColdUserGroup 1.06 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some of these details are obtained from third party information...

5.7AI score0.01528EPSS

Exploits1References5

Cvelist•added 2011/10/08 10:0 a.m.•23 views

CVE-2010-4901

Multiple cross-site scripting XSS vulnerabilities in charmap.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the 1 height or 2 width parameter...

5.8AI score0.0173EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by