Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

780 matches found

Prion
Prionadded 2012/10/01 8:55 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Peel SHOPPING 2.8 and 2.9 allow remote attackers to inject arbitrary web script or HTML via the 1 motclef parameter to achat/recherche.php or 2 PATHINFO to index.php...

4.3CVSS6.1AI score0.01613EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2012/09/23 5:55 p.m.11 views

Directory traversal

Directory traversal vulnerability in HServer 0.1.1 allows remote attackers to read arbitrary files via a 1 ..%5c dot dot encoded backslash or 2 %2e%2e%5c encoded dot dot backslash in the PATHINFO...

5CVSS7.1AI score0.07882EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2012/09/23 5:0 p.m.18 views

CVE-2012-5100

Directory traversal vulnerability in HServer 0.1.1 allows remote attackers to read arbitrary files via a 1 ..%5c dot dot encoded backslash or 2 %2e%2e%5c encoded dot dot backslash in the PATHINFO...

6.6AI score0.07882EPSS
Exploits1References3
NVD
NVDadded 2012/09/20 10:55 a.m.16 views

CVE-2011-5190

Multiple cross-site scripting XSS vulnerabilities in Social Book Facebook Clone 2010 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO parameter to 1 signup.php, 2 lostpass.php, 3 login.php, 4 index.php, 5 helptos.php, 6 helpcontact.php, or 7 help.php...

4.3CVSS5.8AI score0.01206EPSS
Exploits1References5
Cvelist
Cvelistadded 2012/09/20 10:0 a.m.19 views

CVE-2011-5190

Multiple cross-site scripting XSS vulnerabilities in Social Book Facebook Clone 2010 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO parameter to 1 signup.php, 2 lostpass.php, 3 login.php, 4 index.php, 5 helptos.php, 6 helpcontact.php, or 7 help.php...

5.8AI score0.01206EPSS
Exploits1References5
NVD
NVDadded 2012/09/15 5:55 p.m.17 views

CVE-2012-4923

Multiple cross-site scripting XSS vulnerabilities in Endian Firewall 2.4 allow remote attackers to inject arbitrary web script or HTML via the 1 createrule parameter to dnat.cgi, 2 addrule parameter to dansguardian.cgi, or 3 PATHINFO to openvpnusers.cgi...

4.3CVSS5.8AI score0.01828EPSS
Exploits1References4
NVD
NVDadded 2012/09/15 5:55 p.m.21 views

CVE-2012-4336

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

4.3CVSS5.7AI score0.01631EPSS
Exploits3References5
Prion
Prionadded 2012/09/15 5:55 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.2AI score0.02003EPSS
Exploits3References8Affected Software1
Prion
Prionadded 2012/09/15 5:55 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

4.3CVSS6.1AI score0.01631EPSS
Exploits3References5Affected Software1
Cvelist
Cvelistadded 2012/09/15 5:0 p.m.30 views

CVE-2012-4336

Multiple cross-site scripting XSS vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 an arbitrary parameter...

5.7AI score0.01631EPSS
Exploits3References5
Prion
Prionadded 2012/09/06 6:55 p.m.7 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Etano 1.22 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 user, 2 email, 3 email2, 4 f17zip, or 5 agree parameter to join.php; 6 PATHINFO, 7 st, 8 f17city, 9 f17country, 10 f17state, 11 f17zip, 12 f19, 13...

4.3CVSS6.1AI score0.02715EPSS
Exploits0References11Affected Software1
NVD
NVDadded 2012/09/06 5:55 p.m.11 views

CVE-2012-4870

Multiple cross-site scripting XSS vulnerabilities in FreePBX 2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 context parameter to panel/indexamp.php or 2 panel/dhtml/index.php; 3 clid or 4 clidname parameters to panel/flash/mypage.php; 5 PATHINFO to...

4.3CVSS5.8AI score0.02005EPSS
Exploits1References8
Prion
Prionadded 2012/08/29 4:39 a.m.8 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the 1 task parameter to elxis/index.php, and 2 PATHINFO to elxis/administrator/index.php...

4.3CVSS6.1AI score0.02106EPSS
Exploits1References8Affected Software1
NVD
NVDadded 2012/08/28 5:55 p.m.13 views

CVE-2012-4685

Cross-site scripting XSS vulnerability in Arbor Networks Peakflow SP 5.1.1 before patch 6, 5.5 before patch 4, and 5.6.0 before patch 1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index...

4.3CVSS5.7AI score0.0182EPSS
Exploits1References6
Prion
Prionadded 2012/08/28 5:55 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in Arbor Networks Peakflow SP 5.1.1 before patch 6, 5.5 before patch 4, and 5.6.0 before patch 1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index...

4.3CVSS6.1AI score0.0182EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2012/08/28 4:0 p.m.19 views

CVE-2012-4685

Cross-site scripting XSS vulnerability in Arbor Networks Peakflow SP 5.1.1 before patch 6, 5.5 before patch 4, and 5.6.0 before patch 1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index...

5.7AI score0.0182EPSS
Exploits1References6
Prion
Prionadded 2012/08/20 7:55 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the refreshpage function in application/modules/main/views/top.php in Total Shop UK eCommerce Open Source before 2.1.2p1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.1AI score0.01633EPSS
Exploits2References4Affected Software1
NVD
NVDadded 2012/08/13 10:55 p.m.16 views

CVE-2012-4271

Multiple cross-site scripting XSS vulnerabilities in bad-behavior-wordpress-admin.php in the Bad Behavior plugin before 2.0.47 and 2.2.x before 2.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO, 2 httpblkey, 3 httpblmaxage, 4 httpblthreat, 5...

4.3CVSS5.9AI score0.02046EPSS
Exploits1References4
Prion
Prionadded 2012/05/21 10:55 p.m.7 views

Cross site scripting

Cross-site scripting XSS vulnerability in the userphotooptionspage function in user-photo.php in the User Photo plugin before 0.9.5.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to wp-admin/options-general.php. NOTE: some of these details are...

4.3CVSS6.3AI score0.02165EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2012/05/21 6:55 p.m.14 views

CVE-2012-2914

Cross-site scripting XSS vulnerability in captchademo.php in Unijimpe Captcha allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS5.7AI score0.01639EPSS
Exploits1References3
Rows per page
Query Builder