Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

875 matches found

CNVD
CNVDadded 2021/03/11 12:0 a.m.6 views

Wordpress Tips and Tricks HQ All In One WP Security & Firewal plugin Cross Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Wordpress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. all-in-one-wp-security-and-firewall is a website security plugin used in it. A cross-site scripting vulnerability exists in...

6.1CVSS6.2AI score0.01495EPSS
Exploits0References1
CNVD
CNVDadded 2021/03/09 12:0 a.m.20 views

Atlassian Jira Server and Data Center Cross-Site Scripting Vulnerability

Atlassian JIRA Server and Atlassian JIRA Data Center are both products of Atlassian Australia.Atlassian JIRA Server is a server version of a defect tracking management system. Atlassian JIRA Data Center is the data center version of Atlassian JIRA. validation, an attacker could exploit the...

6.1CVSS4.9AI score0.01274EPSS
Exploits0References1
CNVD
CNVDadded 2021/03/05 12:0 a.m.5 views

Micro Focus Solutions Business Manager Cross-Site Scripting Vulnerability (CNVD-2021-17221)

Micro Focus Solutions Business Manager SBM, Serena Business Manager is a suite of business process automation management solutions from Micro Focus UK. The product is mainly used for process automation, including software development lifecycle and IT business process management. A cross-site...

5.5CVSS6.2AI score0.00305EPSS
Exploits0References1
CNVD
CNVDadded 2021/03/05 12:0 a.m.8 views

Henriquedornas Cross-Site Scripting Vulnerability

Henriquedornas is a web framework from Henriquedornas Brazil. Provides a framework for building websites. A cross-site scripting vulnerability exists in Henriquedornas that stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerabilit...

5.4CVSS6.2AI score0.00662EPSS
Exploits1References1
CNVD
CNVDadded 2021/02/25 12:0 a.m.11 views

BIG-IP cross-site scripting vulnerability (CNVD-2021-13214)

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A cross-site scripting vulnerability exists in BIG-IP, which stems from the lack of proper validation of client-side data by t...

6.1CVSS6.3AI score0.00583EPSS
Exploits0References1
CNVD
CNVDadded 2021/02/25 12:0 a.m.8 views

F5 BIG-IP AFM Cross-Site Scripting Vulnerability (CNVD-2021-13213)

F5 BIG-IP AFM is an advanced firewall product from F5 USA for protection against DDos attacks. A cross-site scripting vulnerability exists in BIG-IP AFM, which originates from the lack of proper validation of client data by a WEB application. An attacker can exploit this vulnerability to execute...

5.4CVSS6.2AI score0.00492EPSS
Exploits0References1
CNVD
CNVDadded 2021/02/25 12:0 a.m.12 views

Atlassian Jira Cross-Site Scripting Vulnerability (CNVD-2021-13210)

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is used to track and manage all types of issues and defects in the workplace. A cross-site scripting vulnerability exists in Atlassian Jira Server and Data Center, which stems from a lack of proper validati...

4.8CVSS6.1AI score0.01015EPSS
Exploits0References1
CNVD
CNVDadded 2021/02/25 12:0 a.m.5 views

Horde Groupware Webmail Cross-Site Scripting Vulnerability (CNVD-2021-14154)

Horde Groupware Webmail is a browser-based, enterprise-class communications suite from Horde, Inc. A cross-site scripting vulnerability exists in Horde Groupware Webmail Edition, which stems from a lack of proper validation of client-side data by the WEB application. An attacker can exploit this...

6.1CVSS6AI score0.04944EPSS
Exploits7References1
CNVD
CNVDadded 2021/02/24 12:0 a.m.6 views

Mautic cross-site scripting vulnerability (CNVD-2021-12657)

Mautic is an open source marketing automation software. The software monitors and manages websites, sends emails and manages customer resources. A cross-site scripting vulnerability exists in Mautic, which stems from a lack of proper validation of client-side data by the WEB application. An...

9.6CVSS6AI score0.02694EPSS
Exploits1References1
CNVD
CNVDadded 2021/02/24 12:0 a.m.5 views

Open Build Service Cross-Site Scripting Vulnerability

Open Build Service OBS is a general-purpose system for building and distributing packages from source code in an automated, consistent, and repeatable manner, organized by the Open Build Service. A cross-site scripting vulnerability exists in Open Build Service that stems from a lack of proper...

6.3CVSS6.3AI score0.00748EPSS
Exploits1References1
CNVD
CNVDadded 2021/02/21 12:0 a.m.9 views

Apache MyFaces Cross-Site Request Forgery Vulnerability

Apache MyFaces Trinidad is a U.S. Apache Apache Foundation contains a large number of enterprise-class component libraries and support for attachment JSF framework. A cross-site request forgery vulnerability exists in Apache MyFaces. The vulnerability stems from a lack of proper validation of...

7.5CVSS6.7AI score0.03026EPSS
Exploits3References1
CNNVD
CNNVDadded 2021/02/18 12:0 a.m.3 views

Apache MyFaces Trinidad 跨站请求伪造漏洞

Apache MyFaces Trinidad is a U.S. Apache Apache Foundation contains a large number of enterprise-class component libraries and support for attachment JSF framework. A cross-site request forgery vulnerability exists in Apache MyFaces. The vulnerability stems from a lack of proper validation of...

7.5CVSS6.8AI score0.03026EPSS
Exploits3References27
CNNVD
CNNVDadded 2021/02/11 12:0 a.m.5 views

F5 BIG-IP AFM 跨站脚本漏洞

F5 BIG-IP AFM is an advanced firewall product from F5 USA for protection against DDos attacks. A cross-site scripting vulnerability exists in BIG-IP AFM, which originates from the lack of proper validation of client data by a WEB application. An attacker can exploit this vulnerability to execute...

5.4CVSS6.6AI score0.00492EPSS
Exploits0References4
CNNVD
CNNVDadded 2021/02/11 12:0 a.m.5 views

BIG-IP 跨站脚本漏洞

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A cross-site scripting vulnerability exists in BIG-IP, which stems from the lack of proper validation of client-side data by t...

6.1CVSS6.8AI score0.00583EPSS
Exploits0References4
CNNVD
CNNVDadded 2021/02/10 12:0 a.m.4 views

McAfee McAfee Endpoint Security Cross-Site Scripting Vulnerability

Mcafee McAfee Endpoint Security ENS is a set of U.S. McAfee Mcafee company to provide intelligent collaboration and advanced threat defense framework. The framework supports control of the entire threat defense lifecycle for real-time communications and actionable threat forensics, among other...

4.8CVSS5.8AI score0.00637EPSS
Exploits0References3
CNVD
CNVDadded 2021/02/09 12:0 a.m.9 views

Apache ActiveMQ Cross-Site Scripting Vulnerability (CNVD-2021-11837)

Apache ActiveMQ is the United States Apache Apache Foundation of a set of open source messaging middleware , which supports Java messaging services , clustering , Spring Framework and so on. A cross-site scripting vulnerability exists in Apache ActiveMQ versions 5.15.12 through 5.16.0, which stem...

6.1CVSS5.9AI score0.78972EPSS
Exploits0References1
CNNVD
CNNVDadded 2021/02/09 12:0 a.m.4 views

Tufin SecureTrack R20-2 GA Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in the Tufin SecureTrack R20-2 GA that stems from a lack of proper validation of client-side data by a WEB application. An attacker can exploit this vulnerability to execute client-side code...

5.9CVSS6.2AI score0.00439EPSS
Exploits0References1
CNNVD
CNNVDadded 2021/02/08 12:0 a.m.4 views

Phpgurukul Online Marriage Registration System Cross-Site Scripting Vulnerability

Phpgurukul Online Marriage Registration System is a website builder from the Phpgurukul team that supports online marriage registration. A cross-site scripting vulnerability exists in Phpgurukul Online Marriage Registration System, which stems from a lack of proper validation of client-side data ...

5.4CVSS5.8AI score0.00676EPSS
Exploits0References1
CNVD
CNVDadded 2021/02/05 12:0 a.m.12 views

RainbowFish PacsOne Server Cross-Site Scripting Vulnerability

RainbowFish PacsOne Server is an image archiving and communication system server from RainbowFish Rainbowfish, which is used to save incoming images. A cross-site scripting vulnerability exists in versions of RainbowFish PacsOne Server prior to 7.1.1, which stems from the lack of proper validatio...

6.1CVSS3.2AI score0.05355EPSS
Exploits1References1
CNVD
CNVDadded 2021/02/04 12:0 a.m.7 views

Nagios XI Cross-Site Scripting Vulnerability (CNVD-2021-09294)

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting and rich data visualization. A cross-site scripting vulnerability exists in Nagios XI 5.8.0 in the Favorites component prior to version 1.0.2. An attacker could...

6.1CVSS6.2AI score0.25176EPSS
Exploits0References1
Rows per page
Query Builder