Lucene search
K

6892 matches found

Prion
Prion
added 2010/05/19 10:30 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administrative user interface in Six Apart Movable Type 5.0 and 5.01 allow remote attackers to inject arbitrary web script or HTML via unknown vectors...

4.3CVSS6AI score0.01223EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2010/05/19 8:30 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the taxonomy term name in a Breadcrumb display...

2.1CVSS5.8AI score0.00991EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2010/05/19 8:0 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the node title in a Breadcrumb display...

2.1CVSS5.8AI score0.00991EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2010/05/19 12:8 p.m.18 views

CVE-2010-1584

Cross-site scripting XSS vulnerability in the Context module before 6.x-2.0-rc4 for Drupal allows remote authenticated users, with Administer Blocks privileges, to inject arbitrary web script or HTML via a block description...

2.1CVSS5.3AI score0.01243EPSS
Exploits2References9
Prion
Prion
added 2010/05/14 8:30 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01463EPSS
Exploits0References2
NVD
NVD
added 2010/05/12 11:46 a.m.17 views

CVE-2010-1872

Cross-site scripting XSS vulnerability in cPlayer.php in FlashCard 2.6.5 and 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS5.8AI score0.01453EPSS
Exploits1References4
Prion
Prion
added 2010/05/12 11:46 a.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in cPlayer.php in FlashCard 2.6.5 and 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS6.2AI score0.01453EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/05/11 8:0 p.m.22 views

CVE-2010-1872

Cross-site scripting XSS vulnerability in cPlayer.php in FlashCard 2.6.5 and 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information...

5.8AI score0.01453EPSS
Exploits1References4
NVD
NVD
added 2010/05/11 12:2 p.m.11 views

CVE-2009-4861

Cross-site scripting XSS vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS5.7AI score0.00929EPSS
Exploits1References2
Prion
Prion
added 2010/05/11 12:2 p.m.9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Online Work Order Suite OWOS Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to 1 default.asp and 2 report.asp, and the 3 go parameter to login.asp...

4.3CVSS6.1AI score0.00929EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2010/05/11 12:2 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Hitron Soft Answer Me 1.0 allows remote attackers to inject arbitrary web script or HTML via the qid parameter to the answers script aka answers.php. NOTE: some of these details are obtained from third party information...

4.3CVSS6.2AI score0.01269EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2010/05/10 8:0 p.m.16 views

CVE-2009-4859

Multiple cross-site scripting XSS vulnerabilities in Online Work Order Suite OWOS Lite Edition 3.10 allow remote attackers to inject arbitrary web script or HTML via the show parameter to 1 default.asp and 2 report.asp, and the 3 go parameter to login.asp...

5.8AI score0.00929EPSS
Exploits1References2
CVE
CVE
added 2010/05/10 8:0 p.m.49 views

CVE-2009-4868

CVE-2009-4868 describes a cross-site scripting (XSS) vulnerability in Hitron Soft Answer Me 1.0. The issue allows remote attackers to inject arbitrary web script or HTML via the q_id parameter to the answers script (aka answers.php). The defect’s impact, as stated, is that an attacker can execute...

4.3CVSS5.9AI score0.01269EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2010/05/07 8:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in auktion.php in Pay Per Watch & Bid Auktions System allows remote attackers to inject arbitrary web script or HTML via the idauk parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; th...

4.3CVSS6.4AI score0.01588EPSS
Exploits1References1
NVD
NVD
added 2010/05/07 6:30 p.m.19 views

CVE-2009-4848

Multiple cross-site scripting XSS vulnerabilities in ToutVirtual VirtualIQ Pro 3.2 build 7882 and 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the 1 userId parameter to tvserver/server/user/setPermissions.jsp, 2 deptName parameter to...

4.3CVSS5.8AI score0.01062EPSS
Exploits1References3
Prion
Prion
added 2010/05/07 6:30 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ToutVirtual VirtualIQ Pro 3.2 build 7882 and 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the 1 userId parameter to tvserver/server/user/setPermissions.jsp, 2 deptName parameter to...

4.3CVSS6.1AI score0.01062EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2010/05/07 6:24 p.m.10 views

CVE-2009-4842

Multiple cross-site scripting XSS vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the 1 addNewDept, 2 deptId, or 3 deptDesc parameter to tvserver/server/user/addDepartment.jsp; or the 4 firstName, 5 lastName, or 6 email...

4.3CVSS5.6AI score0.00855EPSS
Exploits0References1
Prion
Prion
added 2010/05/07 6:24 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the 1 addNewDept, 2 deptId, or 3 deptDesc parameter to tvserver/server/user/addDepartment.jsp; or the 4 firstName, 5 lastName, or 6 email...

4.3CVSS5.9AI score0.00855EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2010/05/07 6:23 p.m.21 views

CVE-2009-4853

Multiple cross-site scripting XSS vulnerabilities in JumpBox before 1.1.2 for Foswiki Wiki System allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.8AI score0.01022EPSS
Exploits0References3
Cvelist
Cvelist
added 2010/05/07 5:43 p.m.17 views

CVE-2009-4842

Multiple cross-site scripting XSS vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the 1 addNewDept, 2 deptId, or 3 deptDesc parameter to tvserver/server/user/addDepartment.jsp; or the 4 firstName, 5 lastName, or 6 email...

5.6AI score0.00855EPSS
Exploits0References1
Rows per page
Query Builder