Lucene search
K

6892 matches found

Prion
Prion
added 2010/03/31 6:0 p.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in HP SOA Registry Foundation 6.63 and 6.64 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

4.3CVSS6.1AI score0.01709EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2010/03/29 6:30 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in HP Project and Portfolio Management Center PPMC, formerly Mercury IT Governance 7.1 through SP10 and 7.5 through SP3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.02901EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2010/03/26 8:30 p.m.16 views

CVE-2009-4746

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS5.7AI score0.01214EPSS
Exploits0References1
Prion
Prion
added 2010/03/26 8:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Dreamlevels DreamPoll 3.1 allows remote attackers to inject arbitrary web script or HTML via the recordsPerPage parameter in a polldefault login action...

4.3CVSS6.1AI score0.01214EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2010/03/26 8:30 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Contact module in Exponent CMS 0.97-GA20090213 allows remote attackers to inject arbitrary web script or HTML via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.01042EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2010/03/26 6:0 p.m.36 views

CVE-2009-4505

Multiple cross-site scripting XSS vulnerabilities in OpenCMS OAMP Comments Module 1.0.1 allow remote attackers to inject arbitrary web script or HTML via the name field in a comment, and other unspecified vectors...

5.8AI score0.01073EPSS
Exploits1References4
Prion
Prion
added 2010/03/25 5:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in Zope 2.8.x before 2.8.12, 2.9.x before 2.9.12, 2.10.x before 2.10.11, 2.11.x before 2.11.6, and 2.12.x before 2.12.3 allows remote attackers to inject arbitrary web script or HTML via vectors related to error messages...

4.3CVSS6AI score0.0195EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2010/03/25 5:30 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Recent Comments module 5.x through 5.x-1.2 and 6.x through 6.x-1.0 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a "custom block title interface."...

3.5CVSS5.7AI score0.01005EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2010/03/25 5:0 p.m.18 views

CVE-2010-1111

Multiple cross-site scripting XSS vulnerabilities in Jokes Complete Website allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to joke.php and the 2 searchingred parameter to results.php...

5.8AI score0.01484EPSS
Exploits1References3
Cvelist
Cvelist
added 2010/03/25 5:0 p.m.18 views

CVE-2010-1107

Cross-site scripting XSS vulnerability in the Recent Comments module 5.x through 5.x-1.2 and 6.x through 6.x-1.0 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a "custom block title interface."...

5.3AI score0.01005EPSS
Exploits0References6
Cvelist
Cvelist
added 2010/03/25 5:0 p.m.16 views

CVE-2010-1113

Cross-site scripting XSS vulnerability in the forum page in Web Server Creator - Web Portal 0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to index.php...

5.6AI score0.01457EPSS
Exploits1References3
CVE
CVE
added 2010/03/25 5:0 p.m.45 views

CVE-2010-1105

CVE-2010‑1105 is an XSS vulnerability affecting AdvertisementManager 3.1.0 and 3.6 in the CGI path cgi/index.php, exploitable via the usr parameter. The issue is confirmed across multiple sources (NVD and CVE records) with a base CVSS2 score of 4.3 (MEDIUM) and no exploitation details provided in...

4.3CVSS5.9AI score0.01117EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2010/03/24 10:45 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SpringSource tc Server 6.0.20.B and earlier, Application Management Suite AMS before 2.0.0.SR4, Hyperic HQ Open Source before 4.2.x, Hyperic HQ 4.0 Enterprise before 4.0.3.2, and Hyperic HQ 4.1 Enterprise before 4.1.2.1 allow remote attackers t...

4.3CVSS6.1AI score0.01199EPSS
Exploits2References2Affected Software3
Prion
Prion
added 2010/03/23 7:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Entry Level CMS EL CMS allows remote attackers to inject arbitrary web script or HTML via the subj parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS6.6AI score0.00855EPSS
Exploits0References1
Prion
Prion
added 2010/03/23 6:30 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in CommonSense CMS 5.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...

4.3CVSS6.1AI score0.01299EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2010/03/23 6:30 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in surgeftpmgr.cgi in NetWin SurgeFTP 2.3a6 allow remote attackers to inject arbitrary web script or HTML via the 1 domainid or 2 classid parameter in a class action...

4.3CVSS6AI score0.01075EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2010/03/23 6:30 p.m.14 views

CVE-2009-4736

Cross-site scripting XSS vulnerability in search.php in CommonSense CMS 5.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter...

4.3CVSS5.7AI score0.01299EPSS
Exploits1References6
NVD
NVD
added 2010/03/23 1:0 a.m.16 views

CVE-2010-1052

Multiple cross-site scripting XSS vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to inject arbitrary web script or HTML via the 1 year and 2 mday parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.7AI score0.01204EPSS
Exploits0References1
NVD
NVD
added 2010/03/19 7:30 p.m.21 views

CVE-2010-0465

Cross-site scripting XSS vulnerability in the online Documents functionality in SugarCRM 5.2.x before 5.2.0l and 5.5.x before 5.5.0a allows remote authenticated users to inject arbitrary web script or HTML via the Document Name field...

4.3CVSS5.2AI score0.01042EPSS
Exploits2References4
Prion
Prion
added 2010/03/19 7:0 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in the TGM-Newsletter tgmnewsletter extension 0.0.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01042EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder