CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7612 matches found

Cvelist•added 2005/06/21 4:0 a.m.•18 views

CVE-2002-1703

Cross-site scripting vulnerability XSS in auction.cgi for Mewsoft NetAuction 3.0 allows remote attackers to execute arbitrary script as other users via the Term parameter...

6.6AI score0.04216EPSS

Exploits1References3

Cvelist•added 2005/06/21 4:0 a.m.•17 views

CVE-2002-1708

Cross-site scripting vulnerability XSS in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the 1 subject or 2 message fields...

6.5AI score0.04262EPSS

Exploits1References4

Cvelist•added 2005/06/21 4:0 a.m.•19 views

CVE-2002-1688

The browser history feature in Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to execute arbitrary script as other users and steal authentication information via cookies by injecting JavaScript into the URL, which is executed when the user hits the Back button...

7.2AI score0.17465EPSS

Exploits1References3

Cvelist•added 2005/06/21 4:0 a.m.•20 views

CVE-2002-1681

Cross-site scripting XSS vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary script as other users by injecting script into the paragraph tag...

6.3AI score0.0134EPSS

Exploits0References4

Cvelist•added 2005/06/21 4:0 a.m.•18 views

CVE-2002-1729

Cross-site scripting vulnerability XSS in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message...

6.5AI score0.01306EPSS

Exploits0References4

CVE•added 2005/06/21 4:0 a.m.•66 views

CVE-2002-1708

The OpenVAS/Nessus entries confirm CVE-2002-1708 as a cross-site scripting vulnerability in BasiliX Webmail, affecting version 1.1.0 or lower. The issue arises because BasiliX does not filter HTML tags when displaying messages, enabling an attacker to inject arbitrary HTML/script into the message...

6.8CVSS6.6AI score0.04262EPSS

Exploits1References4Affected Software1

Cvelist•added 2005/06/21 4:0 a.m.•20 views

CVE-2002-1724

Cross-site scripting vulnerability XSS in phpimageview.php for PHPImageView 1.0 allows remote attackers to execute arbitrary script as other users via the pic parameter...

6.6AI score0.01306EPSS

Exploits0References4

Cvelist•added 2005/06/21 4:0 a.m.•16 views

CVE-2002-1685

Cross-site scripting vulnerability XSS in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI...

6.6AI score0.07292EPSS

Exploits1References3

CVE•added 2005/06/21 4:0 a.m.•48 views

CVE-2002-1685

CVE-2002-1685 : BadBlue Enterprise Edition and Personal Edition versions 1.7 and 1.7.2 are affected by a cross-site scripting (XSS) vulnerability in the ext.dll ISAPI. The flaw enables an attacker to execute arbitrary script in the context of other users by injecting script via the ext.dll ISAPI ...

4.3CVSS6.9AI score0.07292EPSS

Exploits1References3Affected Software1

CVE•added 2005/06/21 4:0 a.m.•44 views

CVE-2002-1679

CVE-2002-1679 is a cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 2.2.0 that allows remote attackers to execute arbitrary script as other users by injecting script into a bulletin board message. The provided connected documents confirm the affected product and version and describe ...

4.3CVSS6.5AI score0.01177EPSS

Exploits0References4Affected Software1

exploitpack•added 2005/06/20 12:0 a.m.•10 views

I-Gallery - Folder Argument Cross-Site Scripting

I-Gallery - Folder Argument Cross-Site Scripting source: https://www.securityfocus.com/bid/14002/info i-Gallery is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'folder' parameter of 'folderview.asp...

0.1AI score

Exploits0

exploitpack•added 2005/06/20 12:0 a.m.•18 views

UApplication Ublog Reload 1.0.5 - Trackback.asp Cross-Site Scripting

UApplication Ublog Reload 1.0.5 - Trackback.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/13994/info Ublog Reload is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

6.8AI score

Exploits0

Exploit DB•added 2005/06/20 12:0 a.m.•22 views

I-Gallery - Folder Argument Cross-Site Scripting

source: https://www.securityfocus.com/bid/14002/info i-Gallery is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'folder' parameter of 'folderview.asp'. An attacker may leverage this issue to have...

7.4AI score

Exploits0

exploitpack•added 2005/06/16 12:0 a.m.•12 views

ATutor 1.4.3 - contact.php?subject Cross-Site Scripting

ATutor 1.4.3 - contact.php?subject Cross-Site Scripting source: https://www.securityfocus.com/bid/13972/info ATutor is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage an...

6.8AI score

Exploits0

exploitpack•added 2005/06/16 12:0 a.m.•7 views

ATutor 1.4.3 - subscribe_forum.php?us Cross-Site Scripting

ATutor 1.4.3 - subscribeforum.php?us Cross-Site Scripting source: https://www.securityfocus.com/bid/13972/info ATutor is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

6.8AI score

Exploits0

Exploit DB•added 2005/06/16 12:0 a.m.•20 views

ATutor 1.4.3 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13972/info ATutor is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code executed...

7AI score

Exploits0

Exploit DB•added 2005/06/16 12:0 a.m.•111 views

ATutor 1.4.3 - 'content.php?cid' Cross-Site Scripting

7.4AI score

Exploits0

Exploit DB•added 2005/06/16 12:0 a.m.•21 views

ATutor 1.4.3 - 'send_message.php?l' Cross-Site Scripting

7.4AI score

Exploits0

Symantec•added 2005/06/14 12:0 a.m.•13 views

Microsoft Exchange Server Outlook Web Access HTML Injection Vulnerability

Description Outlook Web Access is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the affected application of an unsuspecting user in...

0.1AI score

Exploits0References2Affected Software2

exploitpack•added 2005/06/14 12:0 a.m.•93 views

Annuaire 1Two 1.01.1 - index.php Cross-Site Scripting

Annuaire 1Two 1.01.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/13961/info Annuaire 1Two is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issu...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by