Lucene search
K

7613 matches found

NVD
NVD
added 2022/09/12 2:15 a.m.13 views

CVE-2022-38972

Cross-site scripting vulnerability in Movable Type plugin A-Form versions prior to 4.1.1 for Movable Type 7 Series and versions prior to 3.9.1 for Movable Type 6 Series allows a remote unauthenticated attacker to inject an arbitrary script...

6.1CVSS0.00749EPSS
Exploits0References3
Prion
Prion
added 2022/09/12 2:15 a.m.21 views

Cross site scripting

Cross-site scripting vulnerability in Movable Type plugin A-Form versions prior to 4.1.1 for Movable Type 7 Series and versions prior to 3.9.1 for Movable Type 6 Series allows a remote unauthenticated attacker to inject an arbitrary script...

5.8CVSS6.1AI score0.00749EPSS
Exploits0References3Affected Software1
Exploit DB
Exploit DB
added 2022/09/02 12:0 a.m.87 views

WordPress Plugin Testimonial Slider and Showcase 2.2.6 - Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin Testimonial Slider and Showcase 2.2.6 - Stored Cross-Site Scripting XSS Date: 05/08/2022 Exploit Author: saitamang , yunaranyancat , syad Vendor Homepage: https://wordpress.org Software Link: https://wordpress.org/plugins/testimonial-slider-and-showcase/ Version:...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/09/02 12:0 a.m.271 views

WordPress Testimonial Slider and Showcase 2.2.6 Plugin - Stored XSS Vulnerability

Exploit Title: WordPress Plugin Testimonial Slider and Showcase 2.2.6 - Stored Cross-Site Scripting XSS Exploit Author: saitamang , yunaranyancat , syad Vendor Homepage: https://wordpress.org Software Link: https://wordpress.org/plugins/testimonial-slider-and-showcase/ Version: 2.2.6 Tested on:...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2022/08/25 6:46 p.m.16 views

CVE-2022-36527

Jfinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the post title text field under the publish blog module...

6AI score0.00413EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2022/08/25 12:0 a.m.29 views

exceedone/exment and exceedone/laravel-admin Cross-site Scripting vulnerability

Reflected cross-site scripting vulnerability in Exment PHP8 exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, PHP7 exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier allows a remote authenticated attacker to inject an arbitrary...

5.4CVSS5.4AI score0.00756EPSS
Exploits0References5Affected Software2
Positive Technologies
Positive Technologies
added 2022/08/25 12:0 a.m.5 views

PT-2022-23448 · Jfinalcms · Jfinalcms

Name of the Vulnerable Software and Affected Versions: Jfinal CMS version 5.1.0 Description: The issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the post title text field under the publish blog module. Recommendations: For Jfinal CMS version...

5.4CVSS5.7AI score0.00413EPSS
Exploits1References7
NVD
NVD
added 2022/08/24 9:15 a.m.9 views

CVE-2022-38089

Stored cross-site scripting vulnerability in Exment PHP8 exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, PHP7 exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier allows a remote authenticated attacker to inject an arbitrary script...

5.4CVSS0.00756EPSS
Exploits0References3
Prion
Prion
added 2022/08/24 9:15 a.m.11 views

Cross site scripting

Reflected cross-site scripting vulnerability in Exment PHP8 exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, PHP7 exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier allows a remote authenticated attacker to inject an arbitrary...

4.9CVSS5.3AI score0.00756EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2022/08/24 9:15 a.m.13 views

Cross site scripting

Stored cross-site scripting vulnerability in Exment PHP8 exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, PHP7 exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier allows a remote authenticated attacker to inject an arbitrary script...

4.9CVSS5.5AI score0.00756EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2022/08/23 7:15 a.m.10 views

CVE-2022-36350

Stored cross-site scripting vulnerability in PukiWiki versions 1.3.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00472EPSS
Exploits0References2
Prion
Prion
added 2022/08/23 7:15 a.m.11 views

Cross site scripting

Stored cross-site scripting vulnerability in PukiWiki versions 1.3.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors...

4.9CVSS5.2AI score0.00472EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/23 7:15 a.m.17 views

Cross site scripting

Reflected cross-site scripting vulnerability in PukiWiki versions 1.5.1 to 1.5.3 allows a remote attacker to inject an arbitrary script via unspecified vectors...

5.8CVSS5.9AI score0.00489EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2022/08/18 8:15 a.m.13 views

CVE-2022-28715

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00546EPSS
Exploits0References2
NVD
NVD
added 2022/08/18 8:15 a.m.20 views

CVE-2022-29487

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00546EPSS
Exploits0References2
NVD
NVD
added 2022/08/18 8:15 a.m.16 views

CVE-2022-33151

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows remote attackers to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00546EPSS
Exploits0References2
Prion
Prion
added 2022/08/18 8:15 a.m.14 views

Cross site scripting

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors...

5.8CVSS6AI score0.00546EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/18 8:15 a.m.14 views

Cross site scripting

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows remote attackers to inject an arbitrary script via unspecified vectors...

5.8CVSS6.1AI score0.00546EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/08/18 8:15 a.m.14 views

Cross site scripting

Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.5 allows a remote attacker to inject an arbitrary script via unspecified vectors...

5.8CVSS6AI score0.00546EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/18 7:14 a.m.21 views

CVE-2022-33151

Cross-site scripting vulnerability in the specific parameters of Cybozu Office 10.0.0 to 10.8.5 allows remote attackers to inject an arbitrary script via unspecified vectors...

6.3AI score0.00546EPSS
Exploits0References2
Rows per page
Query Builder