Lucene search
K

6892 matches found

Prion
Prion
added 2010/09/16 10:0 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 carid parameter to index.php and 2 y parameter to include/images.php...

4.3CVSS6.1AI score0.01086EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2010/09/15 8:0 p.m.33 views

CVE-2010-3010

Cross-site scripting XSS vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management Homepage SMH was originally...

4.3CVSS5.2AI score0.01463EPSS
Exploits0References2
Prion
Prion
added 2010/09/15 8:0 p.m.21 views

Cross site scripting

Cross-site scripting XSS vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: a separate XSS issue for HP System Management Homepage SMH was originally...

4.3CVSS5.5AI score0.01728EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2010/09/14 7:0 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in Django 1.2.x before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via a csrfmiddlewaretoken aka csrftoken cookie...

4.3CVSS5.9AI score0.019EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2010/09/14 4:39 p.m.26 views

CVE-2010-0152

Multiple cross-site scripting XSS vulnerabilities in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5.0.2 allow remote attackers to inject arbitrary web script or HTML via 1 the date1 parameter to pvmmessagestore.php, 2...

5.2AI score0.00865EPSS
Exploits2References2
Debian CVE
Debian CVE
added 2010/09/10 7:0 p.m.22 views

CVE-2010-3263

Cross-site scripting XSS vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name...

4.3CVSS5.5AI score0.01711EPSS
Exploits1
Prion
Prion
added 2010/09/10 6:0 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

2.6CVSS6.1AI score0.01126EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2010/09/08 8:0 p.m.38 views

CVE-2010-2958

Cross-site scripting XSS vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages aka debugging messages, a different vulnerability than CVE-2010-3056...

4.3CVSS6AI score0.019EPSS
Exploits0References1
NVD
NVD
added 2010/09/03 6:0 p.m.10 views

CVE-2010-3208

Cross-site scripting XSS vulnerability in ajax.php in Wiccle Web Builder WWB 1.00 and 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the posttext parameter in a site customsearch action to index.php. NOTE: some of these details are obtained from third party information...

4.3CVSS5.6AI score0.01096EPSS
Exploits1References4
Prion
Prion
added 2010/09/03 6:0 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in ajax.php in Wiccle Web Builder WWB 1.00 and 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the posttext parameter in a site customsearch action to index.php. NOTE: some of these details are obtained from third party information...

4.3CVSS6.1AI score0.01096EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2010/08/25 8:0 p.m.11 views

CVE-2009-4990

Cross-site scripting XSS vulnerability in the Webform report module 5.x and 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a submission...

4.3CVSS5.7AI score0.01022EPSS
Exploits0References3
NVD
NVD
added 2010/08/25 8:0 p.m.12 views

CVE-2009-4989

Cross-site scripting XSS vulnerability in index.php in AJ Auction Pro OOPD 3.0 allows remote attackers to inject arbitrary web script or HTML via the txtkeyword parameter in a search action...

4.3CVSS5.7AI score0.01484EPSS
Exploits1References3
NVD
NVD
added 2010/08/25 8:0 p.m.9 views

CVE-2009-4980

Multiple cross-site scripting XSS vulnerabilities in Photokorn Gallery 1.81 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 where parameter to search.php and 2 qc parameter to admin.php...

4.3CVSS5.8AI score0.01022EPSS
Exploits0References3
Prion
Prion
added 2010/08/25 8:0 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in AJ Auction Pro OOPD 3.0 allows remote attackers to inject arbitrary web script or HTML via the txtkeyword parameter in a search action...

4.3CVSS6.1AI score0.01484EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2010/08/25 8:0 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in users/resumeregister.php in Omnistar Recruiting allows remote attackers to inject arbitrary web script or HTML via the job2 parameter...

4.3CVSS6.1AI score0.01269EPSS
Exploits1References2
Cvelist
Cvelist
added 2010/08/25 7:0 p.m.32 views

CVE-2009-4984

Multiple cross-site scripting XSS vulnerabilities in Accessories Me PHP Affiliate Script 1.4 allow remote attackers to inject arbitrary web script or HTML via the 1 Keywords parameter to search.php and 2 SearchIndex parameter to browse.php...

5.9AI score0.01271EPSS
Exploits0References2
Cvelist
Cvelist
added 2010/08/25 7:0 p.m.19 views

CVE-2009-4989

Cross-site scripting XSS vulnerability in index.php in AJ Auction Pro OOPD 3.0 allows remote attackers to inject arbitrary web script or HTML via the txtkeyword parameter in a search action...

5.7AI score0.01484EPSS
Exploits1References3
Prion
Prion
added 2010/08/16 8:0 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in DiamondList 0.1.6, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 categorydescription parameter to user/main/updatecategory, which is not properly handled by app/views/categories/index.html.erb; an...

4.3CVSS6.2AI score0.02572EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2010/08/16 7:0 p.m.30 views

CVE-2010-3025

Multiple cross-site scripting XSS vulnerabilities in Tomaz Muraus Open Blog 1.2.1, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 excerpt parameter to application/modules/admin/controllers/posts.php, as reachable by admin/posts/edit; and the 2 conten...

5.9AI score0.01344EPSS
Exploits1References8
Cvelist
Cvelist
added 2010/08/16 7:0 p.m.25 views

CVE-2010-3023

Multiple cross-site scripting XSS vulnerabilities in DiamondList 0.1.6, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 categorydescription parameter to user/main/updatecategory, which is not properly handled by app/views/categories/index.html.erb; an...

5.9AI score0.02572EPSS
Exploits1References10
Rows per page
Query Builder