Lucene search
K

6892 matches found

NVD
NVD
added 2010/04/21 2:30 p.m.17 views

CVE-2009-4782

Multiple cross-site scripting XSS vulnerabilities in Theeta CMS, possibly 0.01, allow remote attackers to inject arbitrary web script or HTML via the 1 start, 2 forum, and 3 cat parameters to community/thread.php; 4 start and 5 cat parameters to community/forum.php; and 6 start parameter to...

4.3CVSS5.9AI score0.01498EPSS
Exploits1References3
NVD
NVD
added 2010/04/21 2:30 p.m.28 views

CVE-2009-4780

Multiple cross-site scripting XSS vulnerabilities in index.php in phpMyFAQ before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter in a sitemap action, 2 the search parameter in a search action, 3 the taggingid parameter in a search action, 4 the...

4.3CVSS5.6AI score0.01178EPSS
Exploits1References2
Prion
Prion
added 2010/04/21 2:30 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Theeta CMS, possibly 0.01, allow remote attackers to inject arbitrary web script or HTML via the 1 start, 2 forum, and 3 cat parameters to community/thread.php; 4 start and 5 cat parameters to community/forum.php; and 6 start parameter to...

4.3CVSS6.2AI score0.01498EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2010/04/21 2:0 p.m.23 views

CVE-2009-4780

Multiple cross-site scripting XSS vulnerabilities in index.php in phpMyFAQ before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via 1 the lang parameter in a sitemap action, 2 the search parameter in a search action, 3 the taggingid parameter in a search action, 4 the...

5.6AI score0.01178EPSS
Exploits1References2
Cvelist
Cvelist
added 2010/04/20 4:0 p.m.24 views

CVE-2010-0997

Cross-site scripting XSS vulnerability in 107plugins/content/contentmanager.php in the Content Management plugin in e107 before 0.7.20, when the personal content manager is enabled, allows user-assisted remote authenticated users to inject arbitrary web script or HTML via the contentheading...

5.2AI score0.01043EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2010/04/14 4:0 p.m.21 views

CVE-2010-0190

Cross-site scripting XSS vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.02696EPSS
Exploits0References1
Prion
Prion
added 2010/04/13 6:30 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in shop/USERARTIKELHANDLINGAUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter...

4.3CVSS6.1AI score0.01492EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2010/04/13 6:30 p.m.13 views

CVE-2010-1362

Cross-site scripting XSS vulnerability in the Own Term module 6.x-1.0 for Drupal allows remote authenticated users, with "create additional terms" privileges, to inject arbitrary web script or HTML via the term description field in a term listing page...

2.1CVSS5.3AI score0.00837EPSS
Exploits0References4
Prion
Prion
added 2010/04/09 6:30 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in tsother.php in the Teamsite Hack plugin 3.0 and earlier for WoltLab Burning Board allows remote attackers to inject arbitrary web script or HTML via the userid parameter in a modboard action, which is not properly handled in a forced SQL error message...

4.3CVSS6.6AI score0.00855EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2010/04/09 5:30 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in PrettyBook PrettyFormMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01022EPSS
Exploits0References3
Cvelist
Cvelist
added 2010/04/09 5:0 p.m.14 views

CVE-2010-1332

Cross-site scripting XSS vulnerability in PrettyBook PrettyFormMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01022EPSS
Exploits0References3
securityvulns
securityvulns
added 2010/04/09 12:0 a.m.114 views

MKPortal Recommend module XSS Vulnerability

=========================================== MKPortal Recommend module XSS Vulnerability =========================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0 ////// //...

0.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2010/04/08 4:30 p.m.9 views

CVE-2010-1303

Multiple cross-site scripting XSS vulnerabilities in the Taxonomy Filter module 6.x before 6.x-1.1 for Drupal allow remote authenticated users, with administer taxonomy permissions or create node permissions when free tagging is enabled, to inject arbitrary web script or HTML via vocabulary 1...

2.1CVSS5.9AI score0.01323EPSS
Exploits0References1
NVD
NVD
added 2010/04/08 4:30 p.m.8 views

CVE-2010-1303

Multiple cross-site scripting XSS vulnerabilities in the Taxonomy Filter module 6.x before 6.x-1.1 for Drupal allow remote authenticated users, with administer taxonomy permissions or create node permissions when free tagging is enabled, to inject arbitrary web script or HTML via vocabulary 1...

2.1CVSS5.5AI score0.01323EPSS
Exploits0References5
Prion
Prion
added 2010/04/06 4:30 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web script or HTML via the URI in a request to 1 AddPost.asp, 2 AddTopic.asp, 3 AdminDefault.asp, 4 Bank.asp, 5 Manage.asp, and 6 ShowPost.asp. NOTE: the provenance of this information i...

4.3CVSS6AI score0.00855EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2010/04/06 4:30 p.m.15 views

CVE-2010-1274

Cross-site scripting XSS vulnerability in Emweb Wt before 3.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to "insertions of the URL" that occur during a redirection...

4.3CVSS5.6AI score0.01065EPSS
Exploits0References5
Prion
Prion
added 2010/04/05 3:30 p.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in action/Despam.py in the Despam action module in MoinMoin 1.8.7 and 1.9.2 allows remote authenticated users to inject arbitrary web script or HTML by creating a page with a crafted URI...

3.5CVSS5.5AI score0.02243EPSS
Exploits1References18Affected Software1
NVD
NVD
added 2010/04/01 10:30 p.m.25 views

CVE-2010-1227

Cross-site scripting XSS vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as demonstrated by a subject containing an IMG element with a SRC attribute that performs a cross-site...

4.3CVSS5.9AI score0.0167EPSS
Exploits0References4
Prion
Prion
added 2010/04/01 7:30 p.m.24 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Administration Console in IBM WebSphere Application Server WAS 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attackers to inject arbitrary web script or HTML via the URI...

4.3CVSS5.9AI score0.01642EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2010/04/01 7:0 p.m.27 views

CVE-2010-0768

Cross-site scripting XSS vulnerability in the Administration Console in IBM WebSphere Application Server WAS 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.9 allows remote attackers to inject arbitrary web script or HTML via the URI...

5.5AI score0.01642EPSS
Exploits0References4
Rows per page
Query Builder