Lucene search
K

153 matches found

Cvelist
Cvelist
added 2008/02/28 7:0 p.m.25 views

CVE-2008-1061

Multiple cross-site scripting XSS vulnerabilities in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 text parameter to a warning.php, b notice.php, and c inset.php in view/sniplets/, and possibly d modules/execute.php; the ...

6AI score0.074EPSS
Exploits1References6
NVD
NVD
added 2008/02/25 11:44 p.m.17 views

CVE-2008-0980

Multiple cross-site scripting XSS vulnerabilities in Spyce - Python Server Pages PSP 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the url or type parameter to docs/examples/redirect.spy; 2 the x parameter to docs/examples/handlervalidate.spy; 3 the name parameter to...

4.3CVSS5.8AI score0.01478EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2007/08/25 12:17 a.m.26 views

CVE-2007-4530

Multiple cross-site scripting XSS vulnerabilities in TeamSpeak Server 2.0.20.1 allow remote attackers to inject arbitrary web script or HTML via 1 the errortext parameter to errorbox.html or 2 the oktitle parameter to okbox.html...

4.3CVSS6AI score0.01313EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/07/15 12:0 a.m.57 views

Vulnerability in AltaVista local search engine

Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в поисковике AltaVista local search engine. Уязвимость в параметре text в главном скрипте. XSS: http://site/?text=3Cscript3Ealertdocument.cookie3C/script3E О данной уязвимости я писал в рамках моего проекта Month of...

0.1AI score
Exploits0
NVD
NVD
added 2007/06/28 8:30 p.m.14 views

CVE-2007-3486

Cross-site scripting XSS vulnerability in AltaVista search engine allows remote attackers to inject arbitrary web script or HTML via the text parameter to the default URI...

4.3CVSS5.7AI score0.00845EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/06/28 8:0 p.m.20 views

CVE-2007-3486

Cross-site scripting XSS vulnerability in AltaVista search engine allows remote attackers to inject arbitrary web script or HTML via the text parameter to the default URI...

5.7AI score0.00845EPSS
Exploits0References2
Prion
Prion
added 2007/01/19 11:28 p.m.29 views

Sql injection

Multiple SQL injection vulnerabilities in Joomla! 1.5.0 Beta allow remote attackers to execute arbitrary SQL commands via 1 the searchword parameter in certain files; the where parameter in 2 plugins/search/content.php or 3 plugins/search/weblinks.php; the text parameter in 4...

6.8CVSS9.2AI score0.11638EPSS
Exploits2References11Affected Software1
Cvelist
Cvelist
added 2006/01/18 2:0 a.m.18 views

CVE-2006-0243

Cross-site scripting XSS vulnerability in SMBCMS 2.1 allows remote attackers to inject arbitrary web script or HTML via the text parameter, which is used by the "Search Site" field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.0118EPSS
Exploits0References5
NVD
NVD
added 2005/12/20 11:3 a.m.10 views

CVE-2005-4410

Cross-site scripting XSS vulnerability in NQcontent 3 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the text parameter...

4.3CVSS5.8AI score0.01177EPSS
Exploits0References4
CVE
CVE
added 2005/12/20 11:0 a.m.41 views

CVE-2005-4410

CVE-2005-4410 concerns an Cross-site Scripting (XSS) vulnerability in NQcontent 3. The issue allows remote attackers to inject arbitrary web script or HTML through unspecified search parameters, possibly the text parameter. The available documents identify NQcontent 3 as the affected product and ...

4.3CVSS6.1AI score0.01177EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2005/12/20 11:0 a.m.15 views

CVE-2005-4410

Cross-site scripting XSS vulnerability in NQcontent 3 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the text parameter...

5.8AI score0.01177EPSS
Exploits0References4
NVD
NVD
added 2005/12/16 11:3 a.m.10 views

CVE-2005-4295

Cross-site scripting XSS vulnerability in Absolute Image Gallery XE 2.x allows remote attackers to inject arbitrary web script or HTML via the text parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.01164EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/12/16 11:0 a.m.14 views

CVE-2005-4295

Cross-site scripting XSS vulnerability in Absolute Image Gallery XE 2.x allows remote attackers to inject arbitrary web script or HTML via the text parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.01164EPSS
Exploits0References3
Rows per page
Query Builder