Lucene search
K

7613 matches found

Prion
Prion
added 2021/06/28 1:15 a.m.16 views

Cross site scripting

Cross-site scripting vulnerability in WordPress Popular Posts 5.3.2 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

3.5CVSS5AI score0.01442EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2021/06/28 1:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

3.5CVSS5AI score0.00989EPSS
Exploits0References3Affected Software3
CVE
CVE
added 2021/06/28 12:50 a.m.90 views

CVE-2021-20750

CVE-2021-20750 affects EC-CUBE 3.x (3.0.0–3.0.18-p2) and EC-CUBE 4.x (4.0.0–4.0.5-p1). The vulnerability is a cross‑site scripting flaw that allows a remote attacker to cause arbitrary script execution by tricking an administrator or user into visiting a specially crafted page and performing a sp...

6.1CVSS6.1AI score0.01557EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/06/28 12:50 a.m.20 views

CVE-2021-20746

Cross-site scripting vulnerability in WordPress Popular Posts 5.3.2 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

5.3AI score0.01442EPSS
Exploits1References4
CNVD
CNVD
added 2021/06/25 12:0 a.m.8 views

Ec-Cube Cross-Site Scripting Vulnerability (CNVD-2021-45755)

Ec-Cube is an open source system for creating shopping websites. A cross-site scripting vulnerability exists in Ec-Cube. An attacker can exploit this vulnerability by tricking an administrator into visiting a specially crafted page and performing a specific action to execute arbitrary script on t...

6.1CVSS6.4AI score0.01557EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/23 12:0 a.m.6 views

Ec-cube 跨站脚本漏洞

Ec-Cube is an open source system for creating shopping websites. A cross-site scripting vulnerability exists in Ec-Cube. An attacker can exploit this vulnerability by tricking an administrator into visiting a specially crafted page and performing a specific action to execute arbitrary script on t...

6.1CVSS5.6AI score0.01557EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/06/23 12:0 a.m.79 views

JVN#95292458: Multiple cross-site scripting vulnerabilities in EC-CUBE

EC-CUBE provided by EC-CUBE CO.,LTD. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability CWE-79 - CVE-2021-20750 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...

6.1CVSS6.6AI score0.01557EPSS
Exploits0
NVD
NVD
added 2021/06/22 2:15 a.m.10 views

CVE-2021-20744

Cross-site scripting vulnerability in EC-CUBE Category contents plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script by leading an administrator or a user to a specially crafted page and to perform a specific operation...

6.1CVSS0.00754EPSS
Exploits0References2
NVD
NVD
added 2021/06/22 2:15 a.m.16 views

CVE-2021-20742

Cross-site scripting vulnerability in EC-CUBE Business form output plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecified vector...

6.1CVSS0.00757EPSS
Exploits0References2
NVD
NVD
added 2021/06/22 2:15 a.m.14 views

CVE-2021-20735

Cross-site scripting vulnerability in ETUNA EC-CUBE plugins Delivery slip number plugin 3.0 series 1.0.10 and earlier, Delivery slip number csv bulk registration plugin 3.0 series 1.0.8 and earlier, and Delivery slip number mail plugin 3.0 series 1.0.8 and earlier allows remote attackers to injec...

6.1CVSS0.01121EPSS
Exploits0References4
Prion
Prion
added 2021/06/22 2:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability in Welcart e-Commerce versions prior to 2.2.4 allows remote attackers to inject arbitrary script or HTML via unspecified vectors...

4.3CVSS6AI score0.01044EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/06/22 2:15 a.m.12 views

Cross site scripting

Cross-site scripting vulnerability in Hitachi Application Server Help Hitachi Application Server V10 Manual Windows version 10-11-01 and earlier and Hitachi Application Server V10 Manual UNIX version 10-11-01 and earlier allows a remote attacker to inject an arbitrary script via unspecified vecto...

4.3CVSS5.9AI score0.00754EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/06/22 2:15 a.m.16 views

Cross site scripting

Cross-site scripting vulnerability in ETUNA EC-CUBE plugins Delivery slip number plugin 3.0 series 1.0.10 and earlier, Delivery slip number csv bulk registration plugin 3.0 series 1.0.8 and earlier, and Delivery slip number mail plugin 3.0 series 1.0.8 and earlier allows remote attackers to injec...

4.3CVSS6AI score0.01121EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2021/06/22 2:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability in EC-CUBE Email newsletters management plugin for EC-CUBE 3.0 series versions prior to version 1.0.4 allows a remote attacker to inject an arbitrary script by leading a user to a specially crafted page and to perform a specific operation...

4.3CVSS6AI score0.00754EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/06/22 2:15 a.m.15 views

Cross site scripting

Cross-site scripting vulnerability in EC-CUBE Business form output plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecified vector...

4.3CVSS6AI score0.00757EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/22 1:35 a.m.15 views

CVE-2021-20744

Cross-site scripting vulnerability in EC-CUBE Category contents plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script by leading an administrator or a user to a specially crafted page and to perform a specific operation...

6.3AI score0.00754EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/06/22 1:35 a.m.13 views

CVE-2021-20742

Cross-site scripting vulnerability in EC-CUBE Business form output plugin for EC-CUBE 3.0 series versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecified vector...

6.2AI score0.00757EPSS
Exploits0References2
CVE
CVE
added 2021/06/22 1:35 a.m.72 views

CVE-2021-20742

Affected software: EC-CUBE 3.0 series, specifically the Business form output plugin. Vulnerable component: the plugin prior to version 1.0.1. Root cause: cross-site scripting (CWE-79) vulnerability in the plugin allowing a remote attacker to inject arbitrary script via an unspecified vector. Impa...

6.1CVSS6AI score0.00757EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/22 1:35 a.m.16 views

CVE-2021-20735

Cross-site scripting vulnerability in ETUNA EC-CUBE plugins Delivery slip number plugin 3.0 series 1.0.10 and earlier, Delivery slip number csv bulk registration plugin 3.0 series 1.0.8 and earlier, and Delivery slip number mail plugin 3.0 series 1.0.8 and earlier allows remote attackers to injec...

6.3AI score0.01121EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/06/22 12:0 a.m.4 views

Wordpress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress Plugin is an open source application plugin for WordPress. Wordpress plugin Fudousan 5.7.0 suffers from a cross-site...

5.4CVSS5.8AI score0.00989EPSS
Exploits0References5
Rows per page
Query Builder