Lucene search
K

6892 matches found

Cvelist
Cvelist
added 2011/01/11 1:0 a.m.20 views

CVE-2010-4693

Multiple cross-site scripting XSS vulnerabilities in Coppermine Photo Gallery 1.5.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 h and 2 t parameters to help.php, or 3 picfileXXX parameter to searchnew.php...

5.8AI score0.01806EPSS
Exploits1References7
Prion
Prion
added 2011/01/03 8:0 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in lib/mhtxthtml.pl in MHonArc 2.6.16 allows remote attackers to inject arbitrary web script or HTML via a malformed start tag and end tag for a SCRIPT element, as demonstrated by ipt and ipt sequences...

4.3CVSS6AI score0.027EPSS
Exploits1References13Affected Software1
Cvelist
Cvelist
added 2010/12/30 8:0 p.m.26 views

CVE-2010-4640

Multiple cross-site scripting XSS vulnerabilities in XWiki Watch 1.0 allow remote attackers to inject arbitrary web script or HTML via the rev parameter to 1 bin/viewrev/Main/WebHome and 2 bin/view/Blog, and the 3 registerfirstname and 4 registerlastname parameters to bin/register/XWiki/Register...

5.7AI score0.01263EPSS
Exploits0References7
NVD
NVD
added 2010/12/23 6:0 p.m.19 views

CVE-2010-4520

Multiple cross-site scripting XSS vulnerabilities in the Views module 6.x before 6.x-2.11 for Drupal allow remote attackers to inject arbitrary web script or HTML via 1 a URL or 2 an aggregator feed title...

4.3CVSS5.8AI score0.01042EPSS
Exploits0References3
NVD
NVD
added 2010/12/22 9:0 p.m.21 views

CVE-2010-4277

Cross-site scripting XSS vulnerability in lembedded-video.php in the Embedded Video plugin 4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the content parameter to wp-admin/post.php...

4.3CVSS5.8AI score0.01819EPSS
Exploits1References3
NVD
NVD
added 2010/12/22 3:0 a.m.29 views

CVE-2010-4275

Multiple cross-site scripting XSS vulnerabilities in Radius Manager 3.8.0 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 name or 2 descr parameter in an a updateusergroup or a b storenas action to admin.php...

3.5CVSS5.4AI score0.01272EPSS
Exploits4References4
Prion
Prion
added 2010/12/22 3:0 a.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Radius Manager 3.8.0 allow remote authenticated administrators to inject arbitrary web script or HTML via the 1 name or 2 descr parameter in an a updateusergroup or a b storenas action to admin.php...

3.5CVSS5.7AI score0.01272EPSS
Exploits4References4Affected Software1
Packet Storm
Packet Storm
added 2010/12/16 12:0 a.m.44 views

Gitweb 1.7.3.3 Cross Site Scripting

-8 Description 8--8 Proof Of Concept 8- " -8 Credits 8--8 Notes 8--8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...

4.3CVSS0.05614EPSS
Exploits6
exploitpack
exploitpack
added 2010/12/15 12:0 a.m.28 views

gitWeb 1.7.3.3 - Cross-Site Scripting

gitWeb 1.7.3.3 - Cross-Site Scripting -8 Description 8--8 Proof Of Concept 8- " -8 Credits 8- -8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...

4.3CVSS6AI score0.05614EPSS
Exploits6
NVD
NVD
added 2010/12/14 4:0 p.m.18 views

CVE-2010-4396

Cross-zone scripting vulnerability in the HandleAction method in a certain ActiveX control in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 allows remote attackers to inject arbitrary web script or HTML in the Local Zone by specifying ...

4.3CVSS5.9AI score0.01157EPSS
Exploits0References4
Prion
Prion
added 2010/12/10 7:0 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via 1 x-mac-arabic, 2 x-mac-farsi, or 3 x-mac-hebrew characters that may b...

4.3CVSS6AI score0.04451EPSS
Exploits0References18Affected Software2
Cvelist
Cvelist
added 2010/12/10 6:0 p.m.22 views

CVE-2010-3770

Multiple cross-site scripting XSS vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via 1 x-mac-arabic, 2 x-mac-farsi, or 3 x-mac-hebrew characters that may b...

8.4AI score0.04451EPSS
Exploits0References18
NVD
NVD
added 2010/12/09 9:0 p.m.22 views

CVE-2010-4516

Multiple cross-site scripting XSS vulnerabilities in the JXtended Comments component before 1.3.1 for Joomla allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.8AI score0.01042EPSS
Exploits0References3
NVD
NVD
added 2010/12/09 9:0 p.m.16 views

CVE-2010-4518

Cross-site scripting XSS vulnerability in wp-safe-search/wp-safe-search-jx.php in the Safe Search plugin 0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the v1 parameter...

4.3CVSS5.8AI score0.03523EPSS
Exploits1References4
NVD
NVD
added 2010/12/09 9:0 p.m.28 views

CVE-2010-4513

Multiple cross-site scripting XSS vulnerabilities in Zimplit CMS 3.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter in a load action to zimplit.php and 2 client parameter to Englishmanualversion2.php...

4.3CVSS5.9AI score0.01808EPSS
Exploits1References7
NVD
NVD
added 2010/12/09 9:0 p.m.36 views

CVE-2010-4515

Cross-site scripting XSS vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-6477 and CVE-2009-2454...

4.3CVSS5.6AI score0.01776EPSS
Exploits0References5
Prion
Prion
added 2010/12/09 9:0 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in wp-safe-search/wp-safe-search-jx.php in the Safe Search plugin 0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the v1 parameter...

4.3CVSS6.2AI score0.03523EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2010/12/09 9:0 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Zimplit CMS 3.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter in a load action to zimplit.php and 2 client parameter to Englishmanualversion2.php...

4.3CVSS6.2AI score0.01808EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2010/12/09 8:0 p.m.24 views

CVE-2010-4518

Cross-site scripting XSS vulnerability in wp-safe-search/wp-safe-search-jx.php in the Safe Search plugin 0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the v1 parameter...

5.8AI score0.03523EPSS
Exploits1References4
Cvelist
Cvelist
added 2010/12/09 8:0 p.m.27 views

CVE-2010-4515

Cross-site scripting XSS vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-6477 and CVE-2009-2454...

5.5AI score0.01776EPSS
Exploits0References5
Rows per page
Query Builder