Lucene search
K

7613 matches found

Cvelist
Cvelist
added 2022/07/06 8:30 p.m.25 views

CVE-2022-20800 Cisco Unified Communications Products Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager Session Management Edition Unified CM SME, Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P, and Cisco Unity Connection could...

6.1CVSS6.2AI score0.00656EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/07/05 12:0 a.m.4 views

Zoo Management System 跨站脚本漏洞

PHPGURUKUL Zoo Management System is a zoo management system by Phpgurukul team. A cross-site scripting vulnerability exists in Zoo Management System v1.0, which stems from a lack of checksum filtering of user-supplied data and output in the Add Category feature. The vulnerability can be exploited...

5.4CVSS5.6AI score0.00682EPSS
Exploits2References4
NVD
NVD
added 2022/07/04 7:15 a.m.13 views

CVE-2022-27627

Cross-site scripting vulnerability in Organization's Information of Cybozu Garoon 4.10.2 to 5.5.1 allows a remote attacker to execute an arbitrary script on the logged-in user's web browser...

6.1CVSS0.00609EPSS
Exploits0References2
Prion
Prion
added 2022/07/04 7:15 a.m.12 views

Cross site scripting

Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.10.0 to 5.5.1 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary script...

3.5CVSS5.8AI score0.00485EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/04 6:56 a.m.21 views

CVE-2022-29513

Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.10.0 to 5.5.1 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary script...

6.1AI score0.00485EPSS
Exploits0References2
CVE
CVE
added 2022/07/04 6:55 a.m.77 views

CVE-2022-27627

CVE-2022-27627 is a cross-site scripting vulnerability in Cybozu Garoon’s Organization’s Information that can allow a logged-in user to have arbitrary script executed in their browser. Affected versions include Cybozu Garoon 4.10.2 to 5.5.1 (and related ranges listed across sources), with the roo...

6.1CVSS6.5AI score0.00609EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/04 6:55 a.m.25 views

CVE-2022-27627

Cross-site scripting vulnerability in Organization's Information of Cybozu Garoon 4.10.2 to 5.5.1 allows a remote attacker to execute an arbitrary script on the logged-in user's web browser...

6.8AI score0.00609EPSS
Exploits0References2
OSV
OSV
added 2022/06/28 10:15 p.m.18 views

CVE-2020-19897

A reflected Cross Site Scripting XSS in wuzhicms v4.1.0 allows remote attackers to execute arbitrary web script or HTML via the imgurl parameter...

6.1CVSS6.3AI score
Exploits0References1
Prion
Prion
added 2022/06/27 11:15 p.m.17 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in LightCMS v1.3.11 allows attackers to execute arbitrary web scripts or HTML via uploading a crafted PDF file...

3.5CVSS4.9AI score0.00648EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/06/23 5:15 p.m.17 views

CVE-2022-33113

Jfinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the keyword text field under the publish blog module...

5.4CVSS7AI score
Exploits0References1
OSV
OSV
added 2022/06/16 2:15 a.m.1 views

CVE-2022-30533

Cross-site scripting vulnerability in Modern Events Calendar Lite versions prior to 6.3.0 allows remote an authenticated attacker to inject an arbitrary script via unspecified vectors...

5.4CVSS6.2AI score0.00525EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/16 1:35 a.m.17 views

CVE-2022-30533

Cross-site scripting vulnerability in Modern Events Calendar Lite versions prior to 6.3.0 allows remote an authenticated attacker to inject an arbitrary script via unspecified vectors...

5.5AI score0.00525EPSS
Exploits0References2
NVD
NVD
added 2022/06/14 9:15 a.m.17 views

CVE-2022-29485

Cross-site scripting vulnerability in SHIRASAGI v1.0.0 to v1.14.2, and v1.15.0 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00956EPSS
Exploits0References4
OSV
OSV
added 2022/06/14 9:15 a.m.17 views

CVE-2022-29485

Cross-site scripting vulnerability in SHIRASAGI v1.0.0 to v1.14.2, and v1.15.0 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS6.6AI score
Exploits0References4
Cvelist
Cvelist
added 2022/06/14 7:5 a.m.18 views

CVE-2022-29485

Cross-site scripting vulnerability in SHIRASAGI v1.0.0 to v1.14.2, and v1.15.0 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.2AI score0.00956EPSS
Exploits0References4
Prion
Prion
added 2022/06/13 5:15 a.m.10 views

Cross site scripting

Cross-site scripting vulnerability exists in WP Statistics versions prior to 13.2.0 because it improperly processes a platform parameter. By exploiting this vulnerability, an arbitrary script may be executed on the web browser of the user who is logging in to the website using the product...

4.3CVSS6AI score0.00969EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/06/13 4:50 a.m.22 views

CVE-2022-27231

Cross-site scripting vulnerability exists in WP Statistics versions prior to 13.2.0 because it improperly processes a platform parameter. By exploiting this vulnerability, an arbitrary script may be executed on the web browser of the user who is logging in to the website using the product...

6.3AI score0.00969EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/09 12:0 a.m.2 views

Prison Management System 跨站脚本漏洞

Prison Management System is a prison management system from Carlo Montero's personal developer. version 1.0 of Prison Management System contains a cross-site scripting vulnerability that could be exploited to inject arbitrary html and script code into a website...

4.8CVSS5.5AI score0.0058EPSS
Exploits0References4
OSV
OSV
added 2022/06/06 11:15 p.m.3 views

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS6.5AI score0.02363EPSS
Exploits3References2
NVD
NVD
added 2022/06/02 6:15 p.m.38 views

CVE-2022-30429

Multiple cross-site scripting XSS vulnerabilities in Neos CMS allow attackers with the editor role or higher to inject arbitrary script or HTML code using the editor function, the deletion of assets, or a workspace title. The vulnerabilities were found in versions 3.3.29 and 8.0.1 and could also ...

5.4CVSS0.00564EPSS
Exploits1References2
Rows per page
Query Builder