Lucene search
K

6892 matches found

Prion
Prion
added 2009/09/10 6:30 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in showproduct.php in ReviewPost Pro vB3 allows remote attackers to inject arbitrary web script or HTML via the date parameter...

4.3CVSS6.1AI score0.01097EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/09/10 6:0 p.m.25 views

CVE-2009-3156

Cross-site scripting XSS vulnerability in the Date Tools sub-module in the Date module 6.x before 6.x-2.3 for Drupal allows remote authenticated users, with "use date tools" or "administer content types" privileges, to inject arbitrary web script or HTML via a "Content type label" field...

5.2AI score0.01217EPSS
Exploits0References10
Prion
Prion
added 2009/09/10 10:30 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the web management interface in the ZyXEL P-330W router allows remote attackers to inject arbitrary web script or HTML via the pingstr parameter and other unspecified vectors...

4.3CVSS6.2AI score0.01062EPSS
Exploits1References3
NVD
NVD
added 2009/09/08 11:30 p.m.15 views

CVE-2008-7184

Cross-site scripting XSS vulnerability in Diigo Toolbar and Diigolet allows remote attackers to inject arbitrary web script or HTML via a public comment...

4.3CVSS5.7AI score0.01449EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/09/08 11:0 p.m.20 views

CVE-2008-7184

Cross-site scripting XSS vulnerability in Diigo Toolbar and Diigolet allows remote attackers to inject arbitrary web script or HTML via a public comment...

5.7AI score0.01449EPSS
Exploits1References3
Prion
Prion
added 2009/09/08 10:30 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Lotus iNotes aka Domino Web Access or DWA before 211.241 for Domino 8.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka SPR EZEL7UURYC...

4.3CVSS6AI score0.01645EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2009/09/08 6:30 p.m.27 views

Cross site scripting

Cross-site scripting XSS vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper...

4.3CVSS5.8AI score0.03022EPSS
Exploits1References14Affected Software1
Cvelist
Cvelist
added 2009/09/08 6:0 p.m.19 views

CVE-2009-3009

Cross-site scripting XSS vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper...

7.9AI score0.03022EPSS
Exploits1References14
NVD
NVD
added 2009/09/08 10:30 a.m.21 views

CVE-2008-7175

Cross-site scripting XSS vulnerability in wp-admin/admin.php in NextGEN Gallery 0.96 and earlier plugin for Wordpress allows remote attackers to inject arbitrary web script or HTML via the picture description field in a page edit action...

4.3CVSS5.8AI score0.01467EPSS
Exploits0References2
NVD
NVD
added 2009/09/08 10:30 a.m.17 views

CVE-2008-7171

Multiple cross-site scripting XSS vulnerabilities in Lightweight news portal LNP 1.0b allow remote attackers to inject arbitrary web script or HTML via the 1 photo parameter to showphoto.php, 2 potd parameter to showpotd.php, or 3 the Current question field in a vote action to admin.php...

4.3CVSS5.8AI score0.01445EPSS
Exploits1References4
Prion
Prion
added 2009/09/08 10:30 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in wp-admin/admin.php in NextGEN Gallery 0.96 and earlier plugin for Wordpress allows remote attackers to inject arbitrary web script or HTML via the picture description field in a page edit action...

4.3CVSS6.2AI score0.01467EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2009/09/08 10:30 a.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Lightweight news portal LNP 1.0b allow remote attackers to inject arbitrary web script or HTML via the 1 photo parameter to showphoto.php, 2 potd parameter to showpotd.php, or 3 the Current question field in a vote action to admin.php...

4.3CVSS6AI score0.01445EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2009/09/08 10:0 a.m.16 views

CVE-2008-7171

Multiple cross-site scripting XSS vulnerabilities in Lightweight news portal LNP 1.0b allow remote attackers to inject arbitrary web script or HTML via the 1 photo parameter to showphoto.php, 2 potd parameter to showpotd.php, or 3 the Current question field in a vote action to admin.php...

5.8AI score0.01445EPSS
Exploits1References4
NVD
NVD
added 2009/09/03 5:30 p.m.15 views

CVE-2009-3067

Cross-site scripting XSS vulnerability in index.php in Reservation Manager allows remote attackers to inject arbitrary web script or HTML via the resmanstartdate parameter...

4.3CVSS5.7AI score0.00929EPSS
Exploits1References2
NVD
NVD
added 2009/09/03 5:30 p.m.20 views

CVE-2009-3060

Multiple cross-site scripting XSS vulnerabilities in Joker Board aka JBoard 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the notice parameter to editform.php, 2 the editusermessage parameter to core/editusermessage.php, or 3 the usertitle parameter to...

4.3CVSS5.9AI score0.00929EPSS
Exploits1References2
Prion
Prion
added 2009/09/03 5:30 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Joker Board aka JBoard 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the notice parameter to editform.php, 2 the editusermessage parameter to core/editusermessage.php, or 3 the usertitle parameter to...

4.3CVSS6.2AI score0.00929EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2009/09/01 4:30 p.m.18 views

CVE-2008-7141

Cross-site scripting XSS vulnerability in setup.php in @lex Poll 2.1 allows remote attackers to inject arbitrary web script or HTML via the languagesetup parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.01436EPSS
Exploits1References3
Prion
Prion
added 2009/09/01 4:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in @lex Guestbook 4.0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 languagesetup parameter to setup.php or 2 test parameter to index.php. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.9AI score0.01478EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2009/09/01 4:30 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Nuked-Klan 1.3 beta allows remote attackers to inject arbitrary web script or HTML via the nukednude parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS6AI score0.01062EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/09/01 4:30 p.m.9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the default URI in Chris LaPointe RedGalaxy Download Center 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter, 2 message parameter in a login action, 3 category parameter in a browse action, 4 now...

4.3CVSS5.9AI score0.01524EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder