CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6892 matches found

NVD•added 2011/10/08 2:52 a.m.•22 views

CVE-2011-2661

Multiple cross-site scripting XSS vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote attackers to inject arbitrary web script or HTML via the 1 Directory.Item.name or 2 Directory.Item.displayName parameter...

4.3CVSS5.8AI score0.00943EPSS

Exploits0References2

NVD•added 2011/10/08 2:52 a.m.•23 views

CVE-2011-1696

Cross-site scripting XSS vulnerability in Novell Identity Manager aka IDM User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0, 3.6.1, 3.7.0, and 4.0.0, allows remote attackers to inject arbitrary web script or HTML via the...

4.3CVSS5.7AI score0.01705EPSS

Exploits0References9

Prion•added 2011/10/08 2:52 a.m.•18 views

Cross site scripting

4.3CVSS6.2AI score0.01705EPSS

Exploits0References9Affected Software2

Prion•added 2011/10/08 2:52 a.m.•11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 a web page title, related to classes/Misc.php; or the 2 returnurl or 3 returndesc parameter to display.php...

4.3CVSS5.9AI score0.0253EPSS

Exploits0References16Affected Software1

Debian CVE•added 2011/10/08 1:0 a.m.•20 views

CVE-2011-3598

4.3CVSS5.6AI score0.0253EPSS

Exploits0

NVD•added 2011/10/07 10:55 a.m.•12 views

CVE-2010-4892

Cross-site scripting XSS vulnerability in the powermail extension before 1.5.5 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01042EPSS

Exploits0References3

NVD•added 2011/10/07 10:55 a.m.•12 views

CVE-2010-4890

Cross-site scripting XSS vulnerability in the Yet Another Calendar keyac extension before 1.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01042EPSS

Exploits0References3

NVD•added 2011/10/07 10:55 a.m.•14 views

CVE-2010-4880

Multiple cross-site scripting XSS vulnerabilities in calendar.class.php in ApPHP Calendar ApPHP CAL allow remote attackers to inject arbitrary web script or HTML via the 1 categoryname, 2 categorydescription, 3 eventname, or 4 eventdescription parameter...

4.3CVSS5.8AI score0.01089EPSS

Exploits1References3

Prion•added 2011/10/07 10:55 a.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in OneCMS 2.6.1 allows remote attackers to inject arbitrary web script or HTML via the view parameter...

4.3CVSS6.1AI score0.01504EPSS

Exploits1References3Affected Software1

Prion•added 2011/10/07 10:55 a.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, 3 msn, or 4 aim parameter...

4.3CVSS6AI score0.02154EPSS

Exploits1References9Affected Software1

Prion•added 2011/10/07 10:55 a.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in vodpod-video-gallery/vodpodgallerythumbs.php in the Vodpod Video Gallery Plugin 3.1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the gid parameter...

4.3CVSS6.2AI score0.03968EPSS

Exploits1References6Affected Software1

Cvelist•added 2011/10/07 10:0 a.m.•19 views

CVE-2010-4875

5.8AI score0.03968EPSS

Exploits1References6

NVD•added 2011/10/05 10:55 a.m.•23 views

CVE-2010-4863

Cross-site scripting XSS vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the post-title parameter...

4.3CVSS5.7AI score0.03336EPSS

Exploits1References6

Prion•added 2011/10/05 10:55 a.m.•22 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php3 aka search.php in W-Agora 4.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the bn parameter...

4.3CVSS6.1AI score0.01473EPSS

Exploits1References4Affected Software1

Cvelist•added 2011/10/05 10:0 a.m.•23 views

CVE-2010-4863

Cross-site scripting XSS vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the post-title parameter...

5.7AI score0.03336EPSS

Exploits1References6

Prion•added 2011/10/04 10:55 p.m.•18 views

Cross site scripting

Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to inject arbitrary web script or HTML in the Local Zon...

4.3CVSS6.2AI score0.01059EPSS

Exploits1References1Affected Software2

UbuntuCve•added 2011/10/03 12:0 a.m.•13 views

CVE-2011-3361

Cross-site scripting XSS vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num parameter in a browse action to index.cgi...

4.3CVSS5.9AI score0.02507EPSS

Exploits1References2

Prion•added 2011/10/02 8:55 p.m.•11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in include/functions.php in PunBB before 1.3.6 allow remote attackers to inject arbitrary web script or HTML via the 1 id, 2 formsent, 3 csrftoken, 4 reqconfirm, or 5 delete parameter to delete.php, the 6 id, 7 formsent, 8 csrftoken, 9 reqmessage,...

4.3CVSS6.1AI score0.0233EPSS

Exploits1References10Affected Software1

Prion•added 2011/09/30 10:55 a.m.•16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in TWiki before 5.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the newtopic parameter in a WebCreateNewTopic action, related to the TWiki.WebCreateNewTopicTemplate topic; or 2 the query string to SlideShow.pm in the...

4.3CVSS6AI score0.06045EPSS

Exploits2References9Affected Software1

NVD•added 2011/09/28 10:55 a.m.•20 views

CVE-2011-3858

Cross-site scripting XSS vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter...

4.3CVSS5.8AI score0.03789EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by