Lucene search
K

6892 matches found

Cvelist
Cvelist
added 2009/09/01 4:0 p.m.21 views

CVE-2008-7134

Multiple cross-site scripting XSS vulnerabilities in the default URI in Chris LaPointe RedGalaxy Download Center 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter, 2 message parameter in a login action, 3 category parameter in a browse action, 4 now...

5.7AI score0.01524EPSS
Exploits1References3
Prion
Prion
added 2009/08/28 3:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...

4.3CVSS6.1AI score0.01022EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2009/08/28 3:0 p.m.18 views

CVE-2008-7108

Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...

5.8AI score0.01022EPSS
Exploits0References3
Prion
Prion
added 2009/08/26 2:24 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, different vulnerabilities than CVE-2009-2959...

4.3CVSS5.8AI score0.02265EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2009/08/26 2:0 p.m.23 views

CVE-2008-7092

Multiple cross-site scripting XSS vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to inject arbitrary web script or HTML via a Javascript event in the 1 url, 2 PageName, and 3 title parameters in a CustomBookMarkLink action to Campaign/Campaign; 4 a Javascript event i...

5.8AI score0.01774EPSS
Exploits1References18
Debian CVE
Debian CVE
added 2009/08/25 5:0 p.m.27 views

CVE-2009-2959

Cross-site scripting XSS vulnerability in the waterfall web status view status/web/waterfall.py in Buildbot 0.7.6 through 0.7.11p1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.5AI score0.02008EPSS
Exploits0
Prion
Prion
added 2009/08/25 10:30 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Chipmunk Topsites allows remote attackers to inject arbitrary web script or HTML via the start parameter...

4.3CVSS6.1AI score0.01445EPSS
Exploits1References3
NVD
NVD
added 2009/08/25 10:30 a.m.13 views

CVE-2008-7072

Cross-site scripting XSS vulnerability in index.php in Chipmunk Topsites allows remote attackers to inject arbitrary web script or HTML via the start parameter...

4.3CVSS5.7AI score0.01445EPSS
Exploits1References3
NVD
NVD
added 2009/08/24 10:30 a.m.15 views

CVE-2008-7036

Multiple cross-site scripting XSS vulnerabilities in index.php in DevTracker module 3.0 for bcoos 1.1.11 and earlier, and DevTracker module 0.20 for E-XooPS 1.0.8 and earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 direction and 2 orderby parameters...

4.3CVSS5.8AI score0.01497EPSS
Exploits1References5
Prion
Prion
added 2009/08/24 10:30 a.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...

4.3CVSS6.1AI score0.01734EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2009/08/24 10:30 a.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the resistance field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

4.3CVSS6AI score0.00845EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2009/08/21 8:21 p.m.16 views

CVE-2009-2930

Cross-site scripting XSS vulnerability in the Search feature in elka CMS aka Elkapax allows remote attackers to inject arbitrary web script or HTML via the q parameter to the default URI...

5.7AI score0.01204EPSS
Exploits0References1
Cvelist
Cvelist
added 2009/08/21 5:0 p.m.24 views

CVE-2009-1879

Cross-site scripting XSS vulnerability in index.template.html in the express-install templates in the SDK in Adobe Flex before 3.4, when the installed Flash version is older than a specified requiredMajorVersion value, allows remote attackers to inject arbitrary web script or HTML via the query...

5.6AI score0.08253EPSS
Exploits2References6
NVD
NVD
added 2009/08/21 11:30 a.m.21 views

CVE-2009-2920

Multiple cross-site scripting XSS vulnerabilities in Elvin 1.2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 component and 2 priority parameters to buglist.php; and the 3 Username 4 E-mail, 5 Pass, and 6 Confirm pass fields to createaccount.php...

4.3CVSS5.8AI score0.01216EPSS
Exploits0References2
NVD
NVD
added 2009/08/21 11:2 a.m.14 views

CVE-2009-2914

Cross-site scripting XSS vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

4.3CVSS5.5AI score0.00855EPSS
Exploits0References1
Prion
Prion
added 2009/08/21 11:2 a.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

4.3CVSS6AI score0.00855EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2009/08/20 10:0 p.m.19 views

CVE-2009-2913

Cross-site scripting XSS vulnerability in index.php in XZero Community Classifieds 4.97.8 allows remote attackers to inject arbitrary web script or HTML via the URI. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.00855EPSS
Exploits0References1
NVD
NVD
added 2009/08/20 5:30 p.m.21 views

CVE-2009-2884

Cross-site scripting XSS vulnerability in bios.php in PHP Scripts Now World's Tallest Buildings allows remote attackers to inject arbitrary web script or HTML via the rank parameter...

4.3CVSS5.8AI score0.01498EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/08/20 5:0 p.m.28 views

CVE-2009-2889

Cross-site scripting XSS vulnerability in index.php in PHP Scripts Now Hangman allows remote attackers to inject arbitrary web script or HTML via the letters parameter...

5.8AI score0.01498EPSS
Exploits1References4
Prion
Prion
added 2009/08/19 5:24 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in devalcms 1.4a allows remote attackers to inject arbitrary web script or HTML via the currentpath parameter...

4.3CVSS6.1AI score0.05735EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder