CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

780 matches found

UbuntuCve•added 2010/01/13 8:30 p.m.•28 views

CVE-2009-4612

Multiple cross-site scripting XSS vulnerabilities in the WebApp JSP Snoop page in Mort Bay Jetty 6.1.x through 6.1.21 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI under 1 jspsnoop/, 2 jspsnoop/ERROR/, and 3 jspsnoop/IOException/, and possibly t...

4.3CVSS6.8AI score0.03316EPSS

Exploits1References2

Prion•added 2010/01/13 8:30 p.m.•24 views

Cross site scripting

4.3CVSS5.9AI score0.03316EPSS

Exploits1References1Affected Software1

Prion•added 2010/01/04 5:30 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Survey Pro module for Miniweb 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...

4.3CVSS6.2AI score0.01178EPSS

Exploits1References2Affected Software1

Cvelist•added 2010/01/04 5:0 p.m.•23 views

CVE-2009-4552

Cross-site scripting XSS vulnerability in the Survey Pro module for Miniweb 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...

5.7AI score0.01178EPSS

Exploits1References2

Prion•added 2009/12/30 9:30 p.m.•15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Xstate Real Estate 1.0 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 home.html or 2 lands.html...

4.3CVSS6.1AI score0.0153EPSS

Exploits1References5Affected Software1

Prion•added 2009/12/30 8:30 p.m.•9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO, the 2 archiv parameter, and the 3 subcat parameter...

4.3CVSS6.1AI score0.01436EPSS

Exploits1References3Affected Software1

NVD•added 2009/12/29 8:41 p.m.•21 views

CVE-2009-4446

Cross-site scripting XSS vulnerability in admin.php in phpInstantGallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS5.7AI score0.01436EPSS

Exploits1References3

Prion•added 2009/12/29 8:41 p.m.•10 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin.php in phpInstantGallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.1AI score0.01436EPSS

Exploits1References3Affected Software1

CVE•added 2009/12/29 8:15 p.m.•35 views

CVE-2009-4446

CVE-2009-4446 describes an XSS in phpInstantGallery 1.1 (admin.php) exploitable via PATH_INFO. Exploitation by remote attackers is possible without authentication; impacts include partial integrity breach and no confidentiality/availability effects per CVSS? (Base 4.3, MEDIUM). Connected document...

4.3CVSS5.7AI score0.01436EPSS

Exploits1References3Affected Software1

Cvelist•added 2009/12/29 8:15 p.m.•29 views

CVE-2009-4446

Cross-site scripting XSS vulnerability in admin.php in phpInstantGallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

5.7AI score0.01436EPSS

Exploits1References3

NVD•added 2009/12/23 6:30 p.m.•12 views

CVE-2009-4403

Cross-site scripting XSS vulnerability in index.php in Rumba XML 1.8 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO. NOTE: some of these details are obtained from third party information...

4.3CVSS5.7AI score0.01544EPSS

Exploits1References5

Cvelist•added 2009/12/23 6:0 p.m.•18 views

CVE-2009-4403

5.7AI score0.01544EPSS

Exploits1References5

Prion•added 2009/11/29 1:7 p.m.•21 views

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in telepark.wiki 2.4.23 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.1AI score0.01131EPSS

Exploits1References5Affected Software1

Cvelist•added 2009/11/27 8:45 p.m.•22 views

CVE-2009-4087

Cross-site scripting XSS vulnerability in index.php in telepark.wiki 2.4.23 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

5.7AI score0.01131EPSS

Exploits1References5

Prion•added 2009/11/04 5:30 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in GejoSoft allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI in photos/tags...

4.3CVSS6.2AI score0.01544EPSS

Exploits1References5

CVE•added 2009/11/04 5:0 p.m.•53 views

CVE-2009-3858

CVE-2009-3858 describes a Cross-site Scripting (XSS) vulnerability in GejoSoft. The issue allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI in the photos/tags component. The NVD entry lists a base score of 4.3 (Medium) with network attack vector, ...

4.3CVSS5.7AI score0.01544EPSS

Exploits1References5Affected Software1

Prion•added 2009/10/22 5:30 p.m.•16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpBMS 0.96 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php and 2 modules\base\myaccount.php; and the PATHINFO to 3 modulesview.php, 4 tabledefsoptions.php, and 5 adminsettings.php in...

4.3CVSS6.1AI score0.01247EPSS

Exploits0References2Affected Software1

NVD•added 2009/10/22 5:30 p.m.•19 views

CVE-2009-3755

4.3CVSS5.8AI score0.01247EPSS

Exploits0References2

NVD•added 2009/10/01 2:30 p.m.•10 views

CVE-2009-3509

Cross-site scripting XSS vulnerability in admin/adminindex.php in CJ Dynamic Poll PRO 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS5.7AI score0.01513EPSS

Exploits1References5

Prion•added 2009/10/01 2:30 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin/adminindex.php in CJ Dynamic Poll PRO 2.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

4.3CVSS6.1AI score0.01513EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by