Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

847 matches found

NVD
NVDadded 2015/02/03 4:59 p.m.13 views

CVE-2014-9559

Cross-site scripting XSS vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search...

4.3CVSS5.7AI score0.00318EPSS
Exploits1References2
Prion
Prionadded 2015/02/03 4:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search...

4.3CVSS6.2AI score0.00318EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2015/02/03 4:0 p.m.14 views

CVE-2014-9559

Cross-site scripting XSS vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search...

5.7AI score0.00318EPSS
Exploits1References2
CNVD
CNVDadded 2015/01/28 12:0 a.m.1 views

Free Reprintables ArticleFR Cross-Site Scripting Vulnerability

Free Reprintables ArticleFR is an article directory scripting system from Free Reprintables Philippines. The system supports search engine optimization, anti-spam filters and page creation. A cross-site scripting vulnerability exists in Free Reprintables ArticleFR. A remote attacker can exploit...

4.3CVSS6AI score0.00334EPSS
Exploits2References1
Prion
Prionadded 2014/12/23 11:59 a.m.12 views

Xxe

nps/servlet/webacc in iManager in the Administration Console server in NetIQ Access Manager NAM 4.x before 4.0.1 HF3 allows remote authenticated novlwww users to read arbitrary files via a query parameter containing an XML external entity declaration in conjunction with an entity reference, relat...

4CVSS6.6AI score0.005EPSS
Exploits5References4Affected Software1
Prion
Prionadded 2014/10/22 2:55 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the search.php in LiteCart 1.1.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 query parameter or 2 QUERYSTRING...

4.3CVSS6.1AI score0.00821EPSS
Exploits2References5Affected Software1
Cvelist
Cvelistadded 2014/10/22 2:0 p.m.17 views

CVE-2014-7183

Multiple cross-site scripting XSS vulnerabilities in the search.php in LiteCart 1.1.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 query parameter or 2 QUERYSTRING...

5.7AI score0.00821EPSS
Exploits2References5
NVD
NVDadded 2014/07/25 7:55 p.m.15 views

CVE-2014-5027

Cross-site scripting XSS vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page...

4.3CVSS5.5AI score0.00516EPSS
Exploits0References7
Prion
Prionadded 2014/07/25 7:55 p.m.23 views

Cross site scripting

Cross-site scripting XSS vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page...

4.3CVSS6.1AI score0.00516EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2014/07/25 7:0 p.m.20 views

CVE-2014-5027

Cross-site scripting XSS vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page...

5.5AI score0.00516EPSS
Exploits0References7
NVD
NVDadded 2014/07/01 2:55 p.m.10 views

CVE-2014-4538

Cross-site scripting XSS vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS5.8AI score0.00174EPSS
Exploits1References1
Cvelist
Cvelistadded 2014/07/01 2:0 p.m.15 views

CVE-2014-4538

Cross-site scripting XSS vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.8AI score0.00174EPSS
Exploits1References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.13 views

Tkai's Shoutbox Query Parameter URI Redirection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12914/info Tkai's Shoutbox is reported prone to a remote URI redirection vulnerability. It is reported that an attacker can exploit this issue by supplying the URI of a malicious site through the 'query' parameter of a...

7.1AI score
Exploits0
NVD
NVDadded 2014/06/11 2:55 p.m.11 views

CVE-2014-4036

Cross-site scripting XSS vulnerability in modules/system/admin.php in ImpressCMS 1.3.6.1 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a listimg action...

4.3CVSS5.6AI score0.00225EPSS
Exploits1References1
NVD
NVDadded 2014/06/04 2:55 p.m.12 views

CVE-2014-3961

SQL injection vulnerability in the Export CSV page in the Participants Database plugin before 1.5.4.9 for WordPress allows remote attackers to execute arbitrary SQL commands via the query parameter in an "output CSV" action to pdb-signup/...

7.5CVSS8.4AI score0.05926EPSS
Exploits1References7
Positive Technologies
Positive Technologiesadded 2014/06/04 12:0 a.m.3 views

PT-2014-5637 · WordPress · Participants Database

Name of the Vulnerable Software and Affected Versions: Participants Database plugin versions prior to 1.5.4.9 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the query parameter in an "output CSV" action to the "pdb-signup/" endpoint...

7.5CVSS7.6AI score0.05926EPSS
Exploits1References10
Prion
Prionadded 2014/03/20 4:55 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the search feature in SeedDMS formerly LetoDMS and MyDMS before 4.3.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS6.2AI score0.00295EPSS
Exploits2References5Affected Software1
Packet Storm
Packet Stormadded 2012/12/28 12:0 a.m.22 views

Log Analyzer 3.6.0 Cross Site Scripting

Title: ====== Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability Date: ===== 2012-12-20 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=792 Vendor:...

7.4AI score
Exploits0
Prion
Prionadded 2012/11/27 4:49 a.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in gb/user/index.php in Ramui Forum, possibly 1.0 Beta, allows remote attackers to inject arbitrary web script or HTML via the query parameter...

4.3CVSS6.2AI score0.04177EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2012/11/27 2:0 a.m.13 views

CVE-2012-6045

Cross-site scripting XSS vulnerability in gb/user/index.php in Ramui Forum, possibly 1.0 Beta, allows remote attackers to inject arbitrary web script or HTML via the query parameter...

5.8AI score0.04177EPSS
Exploits1References3
Rows per page
Query Builder