Lucene search
K

318 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2013-4492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via...

4.3CVSS6.8AI score0.02231EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.8 views

The vulnerability of the /vb.htm component in the wireless IP camera software of D-Link DCS-6010L allows a attacker to execute XSS attacks.

The vulnerability of the /vb.htm component in the microprogramming software of the D-Link DCS-6010L wireless IP camera is related to the lack of measures taken to protect the website structure when processing the paratest parameter. Exploiting this vulnerability allows a malicious actor to carry...

4CVSS5.4AI score0.12684EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.5 views

The vulnerability of the “Import from XML and YML” plugin exists due to the lack of protective measures for website structure. This allows attackers to execute XSS attacks.

The vulnerability of the “Import from XML, and YML” plugin exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

5.3CVSS5.4AI score
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.10 views

CVE-2021-29210

A remote dom xss, crlf injection vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380...

4.8CVSS7.3AI score0.00507EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.10 views

CVE-2021-29207

A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...

4.8CVSS7AI score0.00653EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:35 p.m.10 views

CVE-2021-29211

A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...

4.8CVSS7AI score0.00644EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:28 p.m.15 views

CVE-2021-26682

A remote reflected cross-site scripting XSS vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the guest portal interface of ClearPass could allow a remote attacker to conduct a reflected cross-site scripting XSS atta...

6.1CVSS6AI score0.00802EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:29 p.m.11 views

CVE-2021-29205

A remote xss vulnerability was discovered in HPE Integrated Lights-Out 4 iLO 4; HPE SimpliVity 380 Gen9; HPE Integrated Lights-Out 5 iLO 5 for HPE Gen10 Servers; HPE SimpliVity 380 Gen10; HPE SimpliVity 2600; HPE SimpliVity 380 Gen10 G; HPE SimpliVity 325; HPE SimpliVity 380 Gen10 H versions: Pri...

4.8CVSS7AI score0.00653EPSS
Exploits0References1
OSV
OSV
added 2025/04/14 10:15 p.m.5 views

CVE-2025-3592

A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/v1/link/edit. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

5.4CVSS3.8AI score0.00334EPSS
Exploits1References4
OSV
OSV
added 2025/03/18 2:0 p.m.6 views

CVE-2025-2490 Dromara ujcms File Upload WebFileUploadController.java upload cross site scripting

A vulnerability was found in Dromara ujcms 9.7.5. It has been rated as problematic. Affected by this issue is the function uploadZip/upload of the file /main/java/com/ujcms/cms/ext/web/backendapi/WebFileUploadController.java of the component File Upload. The manipulation leads to cross site...

4.8CVSS3.8AI score0.00295EPSS
Exploits1References7
OSV
OSV
added 2025/02/03 12:15 a.m.3 views

CVE-2025-0971

A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /Account/EditProfile of the component Profile Editing. The manipulation of the argument username leads to cross site scripting. The attac...

5.4CVSS3.7AI score0.00281EPSS
Exploits0References3
OSV
OSV
added 2025/01/29 1:15 a.m.5 views

CVE-2025-0794

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. Affected by this issue is some unknown functionality of the file /todoDetail.jsp. The manipulation of the argument curpage leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed...

6.1CVSS3.6AI score0.00417EPSS
Exploits1References4
OSV
OSV
added 2025/01/05 7:15 p.m.7 views

CVE-2025-0228

A vulnerability has been found in code-projects Local Storage Todo App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /js-todo-app/index.html. The manipulation of the argument Add leads to cross site scripting. The attack can be initiated remotely. The...

4.8CVSS3.7AI score0.00294EPSS
Exploits0References4
OSV
OSV
added 2024/12/26 4:15 a.m.3 views

CVE-2024-12933

A vulnerability was found in code-projects Simple Admin Panel 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file updateItemController.php. The manipulation of the argument pname/pdesc leads to cross site scripting. The attack may be launched...

5.4CVSS3.8AI score0.00389EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/12/23 12:0 a.m.8 views

The vulnerability of the QuLog Center software platform for managing QNAP NAS devices lies in the lack of security measures to protect the website structure. This allows attackers to carry out XSS attacks.

The vulnerability of the QuLog Center software platform for managing QNAP NAS devices is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

8.5CVSS5.4AI score0.00407EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/12/22 8:15 a.m.3 views

CVE-2024-12892

A vulnerability classified as problematic was found in code-projects Online Exam Mastering System 1.0. Affected by this vulnerability is an unknown functionality of the file /sign.php?q=account.php. The manipulation of the argument name/gender/college leads to cross site scripting. The attack can...

5.4CVSS3.7AI score0.00371EPSS
Exploits1References5
OSV
OSV
added 2024/11/04 3:15 a.m.6 views

CVE-2024-10755

A vulnerability classified as problematic has been found in PHPGurukul Online Shopping Portal 2.0. Affected is an unknown function of the file /admin/assets/plugins/DataTables/media/unittesting/templates/emptytable.php. The manipulation of the argument scripts leads to cross site scripting. It is...

6.1CVSS3.9AI score0.00393EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/08/25 12:0 a.m.5 views

PT-2024-38839 · Unknown · Sourcecodester Qr Code Bookmark System

Name of the Vulnerable Software and Affected Versions: SourceCodester QR Code Bookmark System version 1.0 Description: A vulnerability was found in the SourceCodester QR Code Bookmark System, affecting the file /endpoint/add-bookmark.php of the component Parameter Handler. The manipulation of the...

5.4CVSS4.3AI score0.00379EPSS
Exploits1References15
OSV
OSV
added 2024/08/12 1:38 p.m.4 views

CVE-2024-7657

A vulnerability classified as problematic was found in Gila CMS 1.10.9. This vulnerability affects unknown code of the file /cm/updaterows/page?id=2 of the component HTTP POST Request Handler. The manipulation of the argument content leads to cross site scripting. The attack can be initiated...

5.4CVSS3.8AI score0.00556EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/08/11 12:0 a.m.7 views

PT-2024-38488 · Unknown · Sourcecodester File Manager App

Name of the Vulnerable Software and Affected Versions: SourceCodester File Manager App version 1.0 Description: A vulnerability has been found in the SourceCodester File Manager App, affecting an unknown functionality of the component Add File Handler. The manipulation of the argument File...

6.1CVSS4.3AI score0.00488EPSS
Exploits1References6
Rows per page
Query Builder