Lucene search
K

6892 matches found

Prion
Prion
added 2009/12/30 9:30 p.m.18 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Xstate Real Estate 1.0 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 home.html or 2 lands.html...

4.3CVSS6.1AI score0.0153EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2009/12/30 8:30 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO, the 2 archiv parameter, and the 3 subcat parameter...

4.3CVSS6.1AI score0.01436EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/12/30 8:0 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in searchadvance.asp in Active Business Directory 2 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS6.1AI score0.01498EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/12/30 12:0 a.m.21 views

CVE-2009-4458

Multiple cross-site scripting XSS vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the 1 tech parameter to admin/admin/config.php during a trunks display action, the 2 description parameter during an Add...

5.8AI score0.01846EPSS
Exploits3References7
Prion
Prion
added 2009/12/29 8:41 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in map.php in LiveZilla 3.1.8.3 allow remote attackers to inject arbitrary web script or HTML via the 1 lat, 2 lng, and 3 zom parameters, which are not properly handled when processed with templates/map.tpl...

4.3CVSS6.1AI score0.01465EPSS
Exploits2References4Affected Software1
Prion
Prion
added 2009/12/28 7:30 p.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities on the Network Management Card NMC on American Power Conversion APC Switched Rack PDU aka Rack Mount Power Distribution devices and other devices allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the...

4.3CVSS6.1AI score0.01994EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/12/28 7:0 p.m.22 views

CVE-2009-1798

Multiple cross-site scripting XSS vulnerabilities on the Network Management Card NMC on American Power Conversion APC Switched Rack PDU aka Rack Mount Power Distribution devices and other devices allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the...

5.9AI score0.01994EPSS
Exploits0References4
Prion
Prion
added 2009/12/22 11:30 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in texmedia Million Pixel Script 3 allows remote attackers to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS6.2AI score0.01756EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2009/12/22 11:30 p.m.11 views

CVE-2009-4381

Cross-site scripting XSS vulnerability in index.php in texmedia Million Pixel Script 3 allows remote attackers to inject arbitrary web script or HTML via the pa parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS5.7AI score0.01756EPSS
Exploits1References6
Prion
Prion
added 2009/12/22 11:30 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Random Prayer 2 steprayer2 extension 0.0.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.00855EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2009/12/21 4:30 p.m.52 views

CVE-2009-4371

Cross-site scripting XSS vulnerability in the Locale module modules/locale/locale.module in Drupal Core 6.14, and possibly other versions including 6.15, allows remote authenticated users with "administer languages" permissions to inject arbitrary web script or HTML via the 1 Language name in...

3.5CVSS6AI score0.00888EPSS
Exploits1References2
Prion
Prion
added 2009/12/21 4:30 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...

3.5CVSS5.7AI score0.00887EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2009/12/21 4:30 p.m.18 views

CVE-2009-4370

Cross-site scripting XSS vulnerability in the Menu module modules/menu/menu.admin.inc in Drupal Core 6.x before 6.15 allows remote authenticated users with permissions to create new menus to inject arbitrary web script or HTML via a menu description, which is not properly handled in the menu...

3.5CVSS5.2AI score0.00887EPSS
Exploits0References5
Prion
Prion
added 2009/12/21 4:30 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Locale module modules/locale/locale.module in Drupal Core 6.14, and possibly other versions including 6.15, allows remote authenticated users with "administer languages" permissions to inject arbitrary web script or HTML via the 1 Language name in...

3.5CVSS5.8AI score0.00888EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/12/21 4:30 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in ScriptsEz Ez Blog allows remote attackers to inject arbitrary web script or HTML via the cname parameter, related to the act and id parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

4.3CVSS6.1AI score0.01472EPSS
Exploits0References3
Prion
Prion
added 2009/12/17 6:30 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0939, allow remote attackers to inject arbitrary web script or HTML via the 1 From, 2 To, 3 Cc, and 4 Bcc parameters...

4.3CVSS6.2AI score0.01065EPSS
Exploits0References5
NVD
NVD
added 2009/12/17 6:30 p.m.17 views

CVE-2009-4352

Multiple cross-site scripting XSS vulnerabilities in TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0939, allow remote attackers to inject arbitrary web script or HTML via the 1 From, 2 To, 3 Cc, and 4 Bcc parameters...

4.3CVSS5.9AI score0.01065EPSS
Exploits0References5
Cvelist
Cvelist
added 2009/12/17 6:0 p.m.16 views

CVE-2009-4352

Multiple cross-site scripting XSS vulnerabilities in TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0939, allow remote attackers to inject arbitrary web script or HTML via the 1 From, 2 To, 3 Cc, and 4 Bcc parameters...

5.9AI score0.01065EPSS
Exploits0References5
NVD
NVD
added 2009/12/17 5:30 p.m.13 views

CVE-2009-4340

Cross-site scripting XSS vulnerability in the No indexed Search noindexedsearch extension 0.2.0 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01022EPSS
Exploits0References3
NVD
NVD
added 2009/12/17 5:30 p.m.17 views

CVE-2009-4346

Cross-site scripting XSS vulnerability in the Frontend news submitter with RTE fertenews extension 1.4.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00845EPSS
Exploits0References2
Rows per page
Query Builder