Lucene search
K

45 matches found

NVD
NVD
added 2013/04/19 11:44 a.m.18 views

CVE-2013-1086

Cross-site scripting XSS vulnerability in WebAccess in Novell GroupWise before 8.0.3 HP3, and 2012 before SP2, allows remote attackers to inject arbitrary web script or HTML via vectors involving an onError attribute...

4.3CVSS5.7AI score0.01222EPSS
Exploits0References3
Prion
Prion
added 2013/04/19 11:44 a.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in WebAccess in Novell GroupWise before 8.0.3 HP3, and 2012 before SP2, allows remote attackers to inject arbitrary web script or HTML via vectors involving an onError attribute...

4.3CVSS6.1AI score0.01222EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2013/04/19 10:0 a.m.52 views

CVE-2013-1086

CVE-2013-1086 is a Cross-site scripting (XSS) vulnerability in WebAccess of Novell GroupWise prior to 8.0.3 HP3, and 2012 prior to SP2. The issue permits remote attackers to inject arbitrary web script or HTML via onError attribute vectors. Connected documents confirm the affected product (Novell...

4.3CVSS5.8AI score0.01222EPSS
Exploits0References3Affected Software1
Atlassian
Atlassian
added 2008/06/14 3:37 p.m.21 views

XSS using onerror

We had a user enter a viagra ad that actual redirected to their site. I think the offending code was here: although obviously they didn't use example.com I've attached the whole page for examination...

2.8AI score
Exploits0
CVE
CVE
added 2006/07/21 12:0 a.m.43 views

CVE-2006-3767

The CVE-2006-3767 entry describes a Cross-site Scripting (XSS) vulnerability in Darren's osDate 1.1.7 and earlier (showprofile.php) that allows remote attackers to inject arbitrary script/HTML via the onerror attribute in an HTML IMG tag with a non-existent src, used when posting a comment (txtco...

6.8CVSS5.9AI score0.01643EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder