Lucene search
K

7613 matches found

NVD
NVD
added 2021/11/24 4:15 p.m.11 views

CVE-2021-20848

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00877EPSS
Exploits0References2
NVD
NVD
added 2021/11/24 4:15 p.m.19 views

CVE-2021-20840

Cross-site scripting vulnerability in Booking Package - Appointment Booking Calendar System versions prior to 1.5.11 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS0.01243EPSS
Exploits0References3
OSV
OSV
added 2021/11/24 4:15 p.m.14 views

CVE-2021-20848

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.1CVSS6.5AI score
Exploits0References2
Cvelist
Cvelist
added 2021/11/24 8:25 a.m.15 views

CVE-2021-20848

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.2AI score0.00877EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/11/24 8:25 a.m.17 views

CVE-2021-20840

Cross-site scripting vulnerability in Booking Package - Appointment Booking Calendar System versions prior to 1.5.11 allows a remote attacker to inject an arbitrary script via unspecified vectors...

6.2AI score0.01243EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/11/23 12:0 a.m.22 views

Cisco Adaptive Security Appliance XSS (cisco-sa-asaftd-xss-webui-gQLSFyPM)

According to its self-reported version, Cisco ASA Software is affected by a cross-site scripting XSS vulnerability in its web services interface due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a us...

6.1CVSS5.4AI score0.00419EPSS
Exploits0References4
NVD
NVD
added 2021/11/17 11:15 a.m.13 views

CVE-2021-24834

The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability which exists in the Create Poll - Options module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is...

5.4CVSS0.01483EPSS
Exploits0References3
Prion
Prion
added 2021/11/17 11:15 a.m.20 views

Cross site scripting

The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability which exists in the Create Poll - Options module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is...

4.3CVSS5.5AI score0.01483EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2021/11/17 11:15 a.m.21 views

Cross site scripting

The YOP Poll WordPress plugin before 6.3.1 is affected by a stored Cross-Site Scripting vulnerability, which exists in the Admin preview module where a user with a role as low as author is allowed to execute arbitrary script code within the context of the application. This vulnerability is due to...

3.5CVSS5.5AI score0.01092EPSS
Exploits0References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/11/16 4:38 a.m.2 views

rwtxt vulnerable to cross-site scripting

Overview rwtxt provided by Zack Scholl is a light-weight content management system CMS that enables to share and/or view any text saved online. rwtxt contains a cross-site scripting vulnerability CWE-79. Ito Reo of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/C...

6.1CVSS5.9AI score0.00877EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/11/16 12:0 a.m.4 views

Ruijie Rg-Uac 跨站脚本漏洞

Ruijie Rg-Uac is an Internet behavior management and auditing product from China Ruijie Networks Ruijie. It is used to solve Internet auditing problems. A security vulnerability exists in the Ruijie RG-UAC 6000-E50 commit 9071227, which can be exploited by an attacker to execute arbitrary web...

6.1CVSS6.7AI score0.00562EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/10 12:0 a.m.23 views

Cisco Prime Infrastructure Stored XSS (cisco-sa-pi-epnm-xss-U2JK537j)

The version of Cisco Prime Infrastructure installed on the remote host is prior to 3.10. It is, therefore, affected by a stored cross-site scripting XSS vulnerability in its web-based management interface due to improper validation of user-supplied input before returning it to users. An...

5.4CVSS6AI score0.0058EPSS
Exploits0References4
NVD
NVD
added 2021/11/04 4:15 p.m.22 views

CVE-2021-40115

A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker...

6.1CVSS0.0075EPSS
Exploits0References1
NVD
NVD
added 2021/11/04 4:15 p.m.30 views

CVE-2021-34784

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

5.4CVSS0.0058EPSS
Exploits0References1
Prion
Prion
added 2021/11/04 4:15 p.m.15 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

3.5CVSS5.3AI score0.0058EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/11/04 3:40 p.m.26 views

CVE-2021-34784 Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

5.4CVSS5.4AI score0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/11/04 3:40 p.m.16 views

CVE-2021-34784 Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

5.4CVSS5.8AI score0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/11/04 3:35 p.m.8 views

CVE-2021-40115 Cisco Webex Video Mesh Cross-Site Scripting Vulnerability

A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker...

6.1CVSS6AI score0.0075EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/04 3:35 p.m.15 views

CVE-2021-40115 Cisco Webex Video Mesh Cross-Site Scripting Vulnerability

A vulnerability in Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker...

6.1CVSS6.1AI score0.0075EPSS
Exploits0References1
Prion
Prion
added 2021/11/03 6:15 p.m.17 views

Cross site scripting

ED01-CMS v1.0 was discovered to contain a reflective cross-site scripting XSS vulnerability in the component sposts.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the Post title or Post content fields...

4.3CVSS5.9AI score0.00621EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder