Lucene search
K

15795 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:59 a.m.8 views

CVE-2010-2778

Cross-site scripting XSS vulnerability in WebAccess in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to inject arbitrary web script or HTML via a crafted message, related to a "Javascript XSS exploit."...

4.3CVSS5.3AI score0.01872EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:55 a.m.10 views

CVE-2010-4339

Cross-site scripting XSS vulnerability in Hypermail 2.2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted From address, which is not properly handled when indexing messages...

4.3CVSS5.8AI score0.00895EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:49 a.m.9 views

CVE-2010-2723

Cross-site scripting XSS vulnerability in LISTSERV 15 and 16 allows remote attackers to inject arbitrary web script or HTML via the T parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.8AI score0.00845EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:37 a.m.8 views

CVE-2015-5356

Cross-site scripting XSS vulnerability in admin/filebrowser.php in GetSimple CMS before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the func parameter...

4.3CVSS5.9AI score0.01786EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:34 a.m.8 views

CVE-2013-4507

Cross-site scripting XSS vulnerability in CollectiveAccess Providence and Pawtucket before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.00931EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:14 a.m.6 views

CVE-2012-2590

Multiple cross-site scripting XSS vulnerabilities in ESCON SupportPortal Professional Edition 3.0 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with 1 a SCRIPT element, 2 a crafted SRC attribute of an IFRAME element, 3 a crafted CONTENT attribute of an...

4.3CVSS5.9AI score0.01319EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:28 a.m.8 views

CVE-2011-1333

Cross-site scripting XSS vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."...

4.3CVSS5.8AI score0.01223EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:9 a.m.17 views

CVE-2012-4266

Cross-site scripting XSS vulnerability in clientdetails.php in Proman Xpress 5.0.1 allows remote attackers to inject arbitrary web script or HTML via the clcomments parameter. NOTE: some of these details are obtained from third party information...

4.3CVSS5.9AI score0.01648EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:7 a.m.7 views

CVE-2012-4236

Cross-site scripting XSS vulnerability in the refreshpage function in application/modules/main/views/top.php in Total Shop UK eCommerce Open Source before 2.1.2p1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS5.9AI score0.01633EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.6 views

CVE-2011-5304

Multiple cross-site scripting XSS vulnerabilities in the Sodahead Polls plugin before 2.0.4 for WordPress allow remote attackers to inject arbitrary web script or HTML via 1 the pollid parameter to customizer.php or 2 the customize parameter to poll.php...

4.3CVSS6.1AI score0.02044EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:54 a.m.6 views

CVE-2011-5287

Multiple cross-site scripting XSS vulnerabilities in HESK before 2.4.1 allow remote attackers to inject arbitrary web script or HTML via the 1 hesksettingstmptitle or 2 hesklangENCODING parameter to inc/header.inc.php; the hesklangattempt parameter to 3 inc/assignmentsearch.inc.php, 4...

4.3CVSS5.9AI score0.00966EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:47 a.m.7 views

CVE-2013-3584

Cross-site scripting XSS vulnerability in Corporater EPM Suite allows remote attackers to inject arbitrary web script or HTML via the customerId parameter to an unspecified component...

4.3CVSS5.9AI score0.01012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:38 a.m.7 views

CVE-2010-5005

Cross-site scripting XSS vulnerability in members/profileCommentsResponse.php in Rayzz Photoz allows remote attackers to inject arbitrary web script or HTML via the profileCommentTextArea parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

4.3CVSS5.8AI score0.00845EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:34 a.m.7 views

CVE-2010-4932

Cross-site scripting XSS vulnerability in search.php in Entrans before 0.3.3 allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS5.9AI score0.00871EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:8 a.m.7 views

CVE-2010-1036

Cross-site scripting XSS vulnerability in HP System Insight Manager before 6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.02872EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:49 a.m.9 views

CVE-2011-4277

Cross-site scripting XSS vulnerability in CourseForum ProjectForum 7.0.1.3038 allows remote attackers to inject arbitrary web script or HTML via a crafted name of an object within a more object on a wiki page...

4.3CVSS5.9AI score0.00918EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:44 a.m.9 views

CVE-2015-5529

Multiple cross-site scripting XSS vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter to dashboard/settings/categories/, 2 title or 3 rel parameter to dashboard/settings/links/, or 4 url parameter to...

4.3CVSS5.9AI score0.03308EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:37 a.m.7 views

CVE-2014-8330

Cross-site scripting XSS vulnerability in EspoCRM allows remote authenticated users to inject arbitrary web script or HTML via the Name field in a new account...

3.5CVSS5.5AI score0.00802EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:27 a.m.18 views

CVE-2012-2975

Cross-site scripting XSS vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requests that are later listed on a summary page...

4.3CVSS5.8AI score0.01513EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:24 a.m.6 views

CVE-2005-3854

Cross-site scripting XSS vulnerability in index.php in EasyPageCMS allows remote attackers to inject arbitrary web script or HTML via the cat parameter...

4.3CVSS5.9AI score0.01257EPSS
Exploits1References1
Rows per page
Query Builder