Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2295 matches found

Prion
Prionadded 2012/08/17 12:55 a.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in Splunk 4.0 through 4.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

4.3CVSS6.1AI score0.00942EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2012/08/13 10:55 p.m.3 views

DEBIAN-CVE-2012-4277

Cross-site scripting XSS vulnerability in the smartyfunctionhtmloptionsoptoutput function in distribution/libs/plugins/function.htmloptions.php in Smarty before 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.01247EPSS
Exploits1References1
Prion
Prionadded 2012/08/12 9:55 p.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in 1 application/views/admin/layout.php and 2 themes/default/views/header.php in the Ushahidi Platform before 2.5 allow remote authenticated users to inject arbitrary web script or HTML via vectors related to a site name...

3.5CVSS5.6AI score0.01093EPSS
Exploits1References2Affected Software1
NVD
NVDadded 2012/08/12 12:55 a.m.19 views

CVE-2012-4246

Multiple cross-site scripting XSS vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the 1 page parameter; or the 2 footer, 3 status, or 4 testtarget parameter in the send page...

4.3CVSS5.8AI score0.01862EPSS
Exploits1References6
OSV
OSVadded 2012/08/10 10:34 a.m.8 views

CVE-2012-3465

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/sanitizehelper.rb in the striptags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup...

5.4AI score
Exploits0References4
Prion
Prionadded 2012/07/25 9:55 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in SocketMail Pro 2.2.9 allows remote attackers to inject arbitrary web script or HTML via the subject of an email...

4.3CVSS6.1AI score0.01201EPSS
Exploits1References3Affected Software1
NVD
NVDadded 2012/07/21 3:38 a.m.15 views

CVE-2012-2365

Cross-site scripting XSS vulnerability in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to inject arbitrary web script or HTML via the idnumber field to cohort/edit.php...

3.5CVSS5.1AI score0.0144EPSS
Exploits0References4
Prion
Prionadded 2012/07/13 9:55 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the tplmediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns parameter in a medialist action to lib/exe/ajax.php...

4.3CVSS6AI score0.01355EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linuxadded 2012/07/05 7:19 p.m.4 views

RESTEasy: XML eXternal Entity (XXE) flaw

RESTEasy before 2.3.1 allows remote attackers to read arbitrary files via an external entity reference in a DOM document, aka an XML external entity XXE injection attack...

5CVSS7.5AI score0.03213EPSS
Exploits0References4
Prion
Prionadded 2012/07/03 10:55 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in decoda/templates/video.php in Decoda before 3.3.1 allows remote attackers to inject arbitrary web script or HTML via multiple URLs in an img tag...

4.3CVSS6.1AI score0.02468EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2012/05/29 8:0 p.m.21 views

CVE-2012-0220

Multiple cross-site scripting XSS vulnerabilities in the meta plugin Plugin/meta.pm in ikiwiki before 3.20120516 allow remote attackers to inject arbitrary web script or HTML via the 1 author or 2 authorurl meta tags...

4.3CVSS8.3AI score0.02108EPSS
Exploits0
Prion
Prionadded 2012/04/05 2:55 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in myadmin/admin1listpages.php in SocialCMS 1.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the TRtitle parameter in an edit action...

3.5CVSS5.7AI score0.00777EPSS
Exploits3References2Affected Software1
Prion
Prionadded 2012/03/13 10:55 a.m.30 views

Cross site scripting

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/formoptionshelper.rb in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving certain...

4.3CVSS5.9AI score0.02504EPSS
Exploits0References8Affected Software2
Prion
Prionadded 2012/03/08 10:55 p.m.27 views

Cross site scripting

Cross-site scripting XSS vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0586, CVE-2012-0588, and CVE-2012-0589...

4.3CVSS5.4AI score0.02036EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2012/03/08 10:0 p.m.25 views

CVE-2012-0588

Cross-site scripting XSS vulnerability in WebKit, as used in Apple iOS before 5.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0586, CVE-2012-0587, and CVE-2012-0589...

5.1AI score0.02036EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2012/02/21 2:22 a.m.5 views

plone: A reflected cross site scripting vulnerability

Cross-site scripting XSS vulnerability in Plone 4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

4.3CVSS5.9AI score0.02367EPSS
Exploits0References4
OSV
OSVadded 2012/02/18 12:55 a.m.1 views

DEBIAN-CVE-2011-3361

Cross-site scripting XSS vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num parameter in a browse action to index.cgi...

4.3CVSS5.8AI score0.02507EPSS
Exploits1References1
OSV
OSVadded 2012/01/30 5:55 p.m.4 views

UBUNTU-CVE-2012-0782

DISPUTED Multiple cross-site scripting XSS vulnerabilities in wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 dbhost, 2 dbname, or 3 uname parameter. NOTE: the vendor disputes the...

4.3CVSS5.8AI score0.03751EPSS
Exploits7References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2012/01/27 1:38 a.m.2 views

Hitachi IT Operations Director Cross-Site Scripting Vulnerability

Overview Hitachi IT Operations Director contains a cross-site scripting vulnerability. Impact A remote attacker could inject arbitrary web script or HTML. Solution Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action...

4.3CVSS6.1AI score0.01148EPSS
Exploits0References4
OSV
OSVadded 2012/01/06 4:1 a.m.3 views

DEBIAN-CVE-2011-4616

Cross-site scripting XSS vulnerability in the HTML-Template-Pro module before 0.9507 for Perl allows remote attackers to inject arbitrary web script or HTML via template parameters, related to improper handling of greater than and less than characters...

4.3CVSS6AI score0.01684EPSS
Exploits1References1
Rows per page
Query Builder