6892 matches found
CVE-2010-2844
Cross-site scripting XSS vulnerability in newsshow.php in Newanz NewsOffice 2.0.18 allows remote attackers to inject arbitrary web script or HTML via the n-cat parameter...
CVE-2009-4948
Cross-site scripting XSS vulnerability in the Store Locator extension before 1.2.8 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-4937
Cross-site scripting XSS vulnerability in Small Pirate SPirate 2.1 allows remote attackers to inject arbitrary web script or HTML via an onmouseover action in an img BBCode tag within a url BBCode tag...
CVE-2009-4944
Multiple cross-site scripting XSS vulnerabilities in ATRC ACollab 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 address parameter to profile.php or the 2 description parameter to events/addevent.php. NOTE: the provenance of this information is unknown; the details ar...
Cross site scripting
Cross-site scripting XSS vulnerability in Small Pirate SPirate 2.1 allows remote attackers to inject arbitrary web script or HTML via an onmouseover action in an img BBCode tag within a url BBCode tag...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ATRC ACollab 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 address parameter to profile.php or the 2 description parameter to events/addevent.php. NOTE: the provenance of this information is unknown; the details ar...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artistid parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the...
CVE-2010-2722
Cross-site scripting XSS vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to inject arbitrary web script or HTML via the artistid parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the...
CVE-2010-2697
Cross-site scripting XSS vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to editblog/index.php. NOTE: some of these details are obtained from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to editblog/index.php. NOTE: some of these details are obtained from third party information...
CVE-2010-2700
Cross-site scripting XSS vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script CBQuick allows remote attackers to inject arbitrary web script or HTML via the search parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in 2daybiz Custom T-Shirt Design Script allows remote attackers to inject arbitrary web script or HTML via a review comment...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Online Photo Pro 2.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Online Contact Manager formerly EContact PRO 3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 showGroup parameter to a index.php and the 2 id parameter to b view.php, c email.php, d edit.php, and e delete.php...
Splunk 4.0 - 4.1.2 XSS Vulnerability
Splunk is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:splunk:splunk";...
CVE-2009-4934
Cross-site scripting XSS vulnerability in index.php in Online Photo Pro 2.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities on the IBM BladeCenter with Advanced Management Module AMM firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allow remote attackers to inject arbitrary web script or HTML via the 1 INDEX or 2 IPADDR parameter to...
Cross site scripting
Cross-site scripting XSS vulnerability in the JExtensions JE Awd Song comawdsong component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the song review field, which is not properly handled in a view action to index.php...
CVE-2010-1520
Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...
CVE-2009-4910
Cross-site scripting XSS vulnerability in the WebVPN portal on Cisco Adaptive Security Appliances ASA 5580 series devices with software before 8.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCsq78418...