Lucene search
K

6892 matches found

Prion
Prion
added 2009/10/08 5:30 p.m.10 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Freelancers 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to placebid.php and 2 jobid parameter to postresume.php...

4.3CVSS6.1AI score0.0154EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2009/10/08 5:0 p.m.17 views

CVE-2009-3601

Cross-site scripting XSS vulnerability in demopage.php in Scriptsez Ultimate Poll allows remote attackers to inject arbitrary web script or HTML via the clr parameter in a vote action...

5.7AI score0.03028EPSS
Exploits1References4
Prion
Prion
added 2009/10/05 7:30 p.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in Xerver HTTP Server 4.32 allows remote attackers to inject arbitrary web script or HTML via the currentPath parameter in a chooseDirectory action...

2.6CVSS6.1AI score0.01486EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2009/10/05 7:30 p.m.13 views

CVE-2009-3562

Cross-site scripting XSS vulnerability in Xerver HTTP Server 4.32 allows remote attackers to inject arbitrary web script or HTML via the currentPath parameter in a chooseDirectory action...

2.6CVSS5.6AI score0.01486EPSS
Exploits2References3
Prion
Prion
added 2009/10/02 7:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in listads.php in YourFreeWorld Ultra Classifieds Pro allows remote attackers to inject arbitrary web script or HTML via the cn parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.00845EPSS
Exploits0References2
NVD
NVD
added 2009/10/02 7:30 p.m.16 views

CVE-2009-3539

Multiple cross-site scripting XSS vulnerabilities in YourFreeWorld Ultra Classifieds Pro allow remote attackers to inject arbitrary web script or HTML via the 1 cname parameter to subclass.php and the 2 sn parameter to listads.php...

4.3CVSS5.8AI score0.01525EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/10/02 7:0 p.m.23 views

CVE-2009-3540

Cross-site scripting XSS vulnerability in listads.php in YourFreeWorld Ultra Classifieds Pro allows remote attackers to inject arbitrary web script or HTML via the cn parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.00845EPSS
Exploits0References2
Prion
Prion
added 2009/10/01 2:30 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in MyWeight 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 date parameter to useraddfood.php, info parameter to 2 userforgotpwdform.php and 3 userlogin.php, and 4 return parameter to userlogin.php...

4.3CVSS6.1AI score0.01768EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2009/10/01 2:0 p.m.27 views

CVE-2009-3509

Cross-site scripting XSS vulnerability in admin/adminindex.php in CJ Dynamic Poll PRO 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

5.7AI score0.01513EPSS
Exploits1References5
NVD
NVD
added 2009/09/30 3:30 p.m.25 views

CVE-2009-3486

Multiple cross-site scripting XSS vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1.14 allow remote authenticated users to inject arbitrary web script or HTML via the host parameter to 1 the pinghost program, reachable through the diagnose program; or 2 the traceroute program, reachab...

3.5CVSS5.5AI score0.01248EPSS
Exploits1References4
Prion
Prion
added 2009/09/30 3:30 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1.14 allow remote authenticated users to inject arbitrary web script or HTML via 1 the JEXECOUTID parameter in a JEXECMODERELAYOUTPUT action to the jexec program; the 2 act, 3 refresh-time, or 4 ifid...

3.5CVSS5.7AI score0.01248EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/09/30 3:0 p.m.24 views

CVE-2009-3496

Cross-site scripting XSS vulnerability in viewmag.php in Vastal I-Tech DVD Zone allows remote attackers to inject arbitrary web script or HTML via the magid parameter...

5.7AI score0.01452EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/09/30 3:0 p.m.27 views

CVE-2009-3487

Multiple cross-site scripting XSS vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1.14 allow remote authenticated users to inject arbitrary web script or HTML via 1 the JEXECOUTID parameter in a JEXECMODERELAYOUTPUT action to the jexec program; the 2 act, 3 refresh-time, or 4 ifid...

5.5AI score0.01248EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/09/30 3:0 p.m.27 views

CVE-2009-3485

Cross-site scripting XSS vulnerability in the J-Web interface in Juniper JUNOS 8.5R1.14 and 9.0R1.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI...

5.7AI score0.01452EPSS
Exploits1References4
Prion
Prion
added 2009/09/29 7:30 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in profiles/html/simpleSearch.do in IBM Lotus Connections 2.0.1 allows remote attackers to inject arbitrary web script or HTML via the name parameter...

4.3CVSS5.9AI score0.03748EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2009/09/29 7:30 p.m.12 views

CVE-2009-3469

Cross-site scripting XSS vulnerability in profiles/html/simpleSearch.do in IBM Lotus Connections 2.0.1 allows remote attackers to inject arbitrary web script or HTML via the name parameter...

4.3CVSS5.6AI score0.03748EPSS
Exploits0References8
Prion
Prion
added 2009/09/29 6:0 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in IBM Lotus Quickr 8.1.0 services for WebSphere Portal allow remote attackers to inject arbitrary web script or HTML via the filename of a .odt file in a Lotus Quickr place, related to the Library template...

4.3CVSS5.9AI score0.01292EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2009/09/29 5:0 p.m.19 views

CVE-2009-3453

Multiple cross-site scripting XSS vulnerabilities in IBM Lotus Quickr 8.1.0 services for WebSphere Portal allow remote attackers to inject arbitrary web script or HTML via the filename of a .odt file in a Lotus Quickr place, related to the Library template...

5.7AI score0.01292EPSS
Exploits0References8
Cvelist
Cvelist
added 2009/09/29 3:0 p.m.23 views

CVE-2009-3450

Multiple cross-site scripting XSS vulnerabilities in WebCoreModule.ashx in RADactive I-Load before 2008.2.5.0 allow remote attackers to inject arbitrary web script or HTML via parameters with names beginning with underscore underscore sequences, which are incompatible with an XSS protection...

5.3AI score0.01859EPSS
Exploits0References6
NVD
NVD
added 2009/09/24 4:30 p.m.19 views

CVE-2009-3359

Multiple cross-site scripting XSS vulnerabilities in Match Agency BiZ 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 important parameter to editprofile.php and 2 pid parameter to report.php...

4.3CVSS5.8AI score0.01573EPSS
Exploits1References5
Rows per page
Query Builder