CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3724 matches found

NVD•added 2003/12/31 5:0 a.m.•14 views

CVE-2003-1536

Multiple cross-site scripting XSS vulnerabilities in Codeworx Technologies DCP-Portal 5.3.1 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php and 2 the year parameter to calendar.php...

4.3CVSS5.8AI score0.00787EPSS

Exploits1References7

NVD•added 2003/12/31 5:0 a.m.•18 views

CVE-2003-1543

Cross-site scripting XSS vulnerability in Bajie Http Web Server 0.95zxe, 0.95zxc, and possibly others, allows remote attackers to inject arbitrary web script or HTML via the query string, which is reflected in an error message...

4.3CVSS5.8AI score0.00435EPSS

Exploits1References7

NVD•added 2003/12/31 5:0 a.m.•3 views

CVE-2003-1317

Cross-site scripting XSS vulnerability in mod.php in eNdonesia 8.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

6.8CVSS5.6AI score0.00807EPSS

Exploits1References5

NVD•added 2003/12/31 5:0 a.m.•9 views

CVE-2003-1479

Cross-site scripting XSS vulnerability in webcamXP 1.02.432 and 1.02.535 allows remote attackers to inject arbitrary web script or HTML via the message field...

4.3CVSS5.7AI score0.00351EPSS

Exploits1References5

NVD•added 2003/12/31 5:0 a.m.•10 views

CVE-2003-1334

Cross-site scripting XSS vulnerability in Kai Blankenhorn Bitfolge simple and nice index file aka snif before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00288EPSS

Exploits0References1

NVD•added 2003/12/31 5:0 a.m.•8 views

CVE-2003-1498

Cross-site scripting XSS vulnerability in search.php for WRENSOFT Zoom Search Engine 2.0 Build 1018 and earlier allows remote attackers to inject arbitrary web script or HTML via the zoomquery parameter...

4.3CVSS5.8AI score0.01292EPSS

Exploits1References3

NVD•added 2003/12/31 5:0 a.m.•6 views

CVE-2003-1100

Multiple cross-site scripting XSS vulnerabilities in Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allow remote attackers to inject arbitrary web script or HTML via certain vectors...

4.3CVSS5.8AI score0.02925EPSS

Exploits0References5

NVD•added 2003/12/31 5:0 a.m.•3 views

CVE-2003-1211

Cross-site scripting XSS vulnerability in search.asp for MaxWebPortal 1.30 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the Search parameter...

6.8CVSS5.9AI score0.01535EPSS

Exploits1References5

NVD•added 2003/12/31 5:0 a.m.•9 views

CVE-2003-1556

Cross-site scripting XSS vulnerability in ccguestbook.pl in CGI City CC GuestBook allows remote attackers to inject arbitrary web script or HTML via the 1 name and 2 homepagetitle webpage title parameters...

4.3CVSS5.7AI score0.00278EPSS

Exploits0References3

Cvelist•added 2003/11/05 5:0 a.m.•13 views

CVE-2003-0623

Cross-site scripting XSS vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument...

5.9AI score0.00539EPSS

Exploits1References4

NVD•added 2003/11/02 5:0 a.m.•14 views

CVE-2003-1187

Cross-site scripting XSS vulnerability in include.php in PHPKIT 1.6.02 and 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the contactemail parameter...

6.8CVSS5.7AI score0.00655EPSS

Exploits1References4

securityvulns•added 2003/09/25 12:0 a.m.•24 views

Thread-ITSQL XSS Vulnerability

Thread-ITSQL XSS Vulnerability Published: 24 September 2003 Released: 24 September 2003 Affected Systems: Thread-ITSQL Vendor: http://www.ymonda.co.uk Issue: Remote attackers can inject XSS script. Description: ============ "Thread-ITSQL message board product is designed specifically for SQL Serv...

Exploits0

Positive Technologies•added 2003/09/12 12:0 a.m.•4 views

PT-2003-1862 · Icq · Icq Web Front

Name of the Vulnerable Software and Affected Versions: ICQ Web Front affected versions not specified Description: A cross-site scripting XSS issue exists in the guestbook component of ICQ Web Front, specifically in the guestbook.html file. This allows remote attackers to inject arbitrary web scri...

4.3CVSS5.5AI score0.00687EPSS

Exploits0References3

securityvulns•added 2003/08/12 12:0 a.m.•21 views

ZH2003-21SA (security advisory): DcForum+ XSS Vulnerability

ZH2003-21SA security advisory: DcForum+ XSS Vulnerability Published: 10 august 2003 Released: 10 august 2003 Name: DcForum+ Affected Systems: 1.2 Issue: Remote attackers can inject XSS script Author: G00db0y zone-h org Vendor: http://www.dcscripts.com/dcforump.shtml Description Zone-h Security Te...

0.7AI score

Exploits0

NVD•added 2003/08/11 4:0 a.m.•7 views

CVE-2003-1088

Cross-site scripting XSS vulnerability in index.php for Zorum 3.4 and 3.5 allows remote attackers to inject arbitrary web script or HTML via the method parameter...

4.3CVSS5.8AI score0.00614EPSS

Exploits1References5

NVD•added 2003/07/24 4:0 a.m.•14 views

CVE-2003-0389

Cross-site scripting XSS vulnerability in the secure redirect function of RSA ACE/Agent 5.0 for Windows, and 5.x for Web, allows remote attackers to insert arbitrary web script and possibly cause users to enter a passphrase via a GET request containing the script...

4.3CVSS5.9AI score0.00312EPSS

Exploits3References2

Cvelist•added 2003/07/17 4:0 a.m.•14 views

CVE-2003-0526

Cross-site scripting XSS vulnerability in Microsoft Internet Security and Acceleration ISA Server 2000 allows remote attackers to inject arbitrary web script via a URL containing the script in the domain name portion, which is not properly cleansed in the default error pages 1 500.htm for "500...

5.8AI score0.45647EPSS

Exploits0References8

Cvelist•added 2003/03/18 5:0 a.m.•13 views

CVE-2002-1455

Multiple cross-site scripting XSS vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into web pages via 1 test.php, 2 test.shtml, or 3 redir.exe...

5.8AI score0.00448EPSS

Exploits1References3

Cvelist•added 2003/03/18 5:0 a.m.•18 views

CVE-2002-1459

Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows remote attackers to insert arbitrary script or HTML via message fields including 1 From, 2 E-Mail, and 3 Subject...

6.3AI score0.01916EPSS

Exploits0References5

NVD•added 2002/12/31 5:0 a.m.•10 views

CVE-2002-2115

Cross-site scripting XSS vulnerability in Hyper NIKKI System HNS Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML...

4.3CVSS5.8AI score0.00409EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by