Lucene search
K

68 matches found

Nmap
Nmap
added 2013/07/06 2:39 p.m.220 views

http-stored-xss NSE Script

Unfiltered '' greater than sign. An indication of potential XSS vulnerability. See also: http-dombased-xss.nse http-phpself-xss.nse http-xssed.nse http-unsafe-output-escaping.nse Script Arguments http-stored-xss.formpaths The pages that contain the forms to exploit. For example, /upload.php,...

10CVSS9.1AI score0.99448EPSS
Exploits33
Prion
Prion
added 2013/04/24 10:28 a.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Administrative console in IBM WebSphere Application Server WAS 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 allows remote attackers to inject arbitrary web script or HTML via crafted field values...

4.3CVSS5.9AI score0.01812EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2011/04/22 10:0 a.m.57 views

CVE-2011-1685

CVE-2011-1685 affects Best Practical RT (Request Tracker) versions 3.8.0–3.8.9 and 4.0.0rc–4.0.0rc7, where enabling CustomFieldValuesSources (external custom fields) allows remote authenticated users to execute arbitrary code via CSRF. The vulnerability arises from the external custom field featu...

4.6CVSS7.4AI score0.01116EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2008/10/29 3:31 p.m.21 views

CVE-2008-4792

The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 does not properly validate unspecified content fields of an internal Drupal form, which allows remote authenticated users to bypass intended access restrictions via modified field values...

6CVSS5.9AI score0.01282EPSS
Exploits0References2
Prion
Prion
added 2007/11/15 1:46 a.m.27 views

Input validation

Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads...

4.3CVSS6.2AI score0.01509EPSS
Exploits1References8Affected Software2
NVD
NVD
added 2007/11/15 1:46 a.m.21 views

CVE-2007-4695

Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads...

4.3CVSS6AI score0.01509EPSS
Exploits1References8
Cvelist
Cvelist
added 2007/11/15 1:0 a.m.30 views

CVE-2007-4695

Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads...

6.8AI score0.01509EPSS
Exploits1References8
Cvelist
Cvelist
added 2006/02/25 11:0 a.m.17 views

CVE-2006-0897

SQL injection vulnerability in VCS Virtual Program Management Intranet VPMi Enterprise 3.3 allows remote attackers to execute arbitrary SQL commands via the UpdateID0 parameter to ServiceRequests.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

8AI score0.01381EPSS
Exploits0References7
Rows per page
Query Builder