CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6657 matches found

NVD•added 2006/04/01 12:4 a.m.•10 views

CVE-2006-1568

Multiple cross-site scripting XSS vulnerabilities in register.php in RedCMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 email, 2 location, or 3 website parameters...

5.1CVSS5.8AI score0.12774EPSS

Exploits0References8

Cvelist•added 2006/04/01 12:0 a.m.•12 views

CVE-2006-1568

Multiple cross-site scripting XSS vulnerabilities in register.php in RedCMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 email, 2 location, or 3 website parameters...

5.8AI score0.12774EPSS

Exploits0References8

CVE•added 2006/03/30 1:0 a.m.•40 views

CVE-2006-1504

CVE-2006-1504 concerns multiple XSS vulnerabilities in Arab Portal 2.0 (also called Arab Dynamic Portal/ADP). The issues allow remote attackers to inject arbitrary web script or HTML by manipulating the title parameter in two pages: online.php and download.php. The affected software is Arab Porta...

5.1CVSS5.8AI score0.0132EPSS

Exploits1References8Affected Software1

CVE•added 2006/03/29 1:0 a.m.•40 views

CVE-2006-1482

CVE-2006-1482 is an XSS vulnerability in ConfTool 1.1, triggered by the page parameter in index.php. An attacker can inject arbitrary web script/HTML, potentially executing in a user’s browser when the affected page is viewed. The vulnerability is documented across multiple sources (NVD entry for...

4.3CVSS5.7AI score0.00685EPSS

Exploits0References6Affected Software1

Cvelist•added 2006/03/29 1:0 a.m.•11 views

CVE-2006-1479

Multiple cross-site scripting XSS vulnerabilities in Serge Rey gtd-php aka Getting Things Done 0.5 allow remote attackers to inject arbitrary web script or HTML via the Description field in 1 newProject.php, 2 newList.php, and 3 newWaitingOn.php; the Title field in 4 newProject.php, 5 newList.php...

5.8AI score0.02265EPSS

Exploits1References15

Prion•added 2006/03/28 8:2 p.m.•17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpCOIN 1.2.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the fs parameter to 1 mod.php or 2 modprint.php...

4.3CVSS6.1AI score0.00943EPSS

Exploits0References7Affected Software1

Prion•added 2006/03/28 8:2 p.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in afmsearch.aspx in Absolute FAQ Manager .NET 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search module parameters, possibly the question parameter...

4.3CVSS6.3AI score0.00527EPSS

Exploits0References6Affected Software1

Cvelist•added 2006/03/28 8:0 p.m.•12 views

CVE-2006-1414

Multiple cross-site scripting XSS vulnerabilities in toast.asp in Toast Forums 1.6 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 author, 2 subject, 3 message, or 4 dayprune parameter...

5.8AI score0.00809EPSS

Exploits1References6

NVD•added 2006/03/28 11:6 a.m.•15 views

CVE-2006-1406

Multiple cross-site scripting XSS vulnerabilities in wbadmlog.aspx in uniForum 4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 txtuser or 2 txtpassword parameters...

4.3CVSS5.8AI score0.00527EPSS

Exploits0References6

CVE•added 2006/03/28 11:0 a.m.•42 views

CVE-2006-1411

The CVE-2006-1411 issue affects Absolute Image Gallery XE 2.0 and earlier, where cross-site scripting (XSS) is possible via the shownew parameter in gallery.asp and through unspecified search module parameters. The underlying vulnerability is input handling that allows arbitrary web script/HTML t...

4.3CVSS5.8AI score0.00427EPSS

Exploits0References5Affected Software1

NVD•added 2006/03/26 11:6 p.m.•9 views

CVE-2006-1396

Multiple cross-site scripting XSS vulnerabilities in Cholod MySQL Based Message Board allow remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

4.3CVSS5.6AI score0.00346EPSS

Exploits0References4

Prion•added 2006/03/26 11:6 p.m.•9 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the modpubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack...

4.3CVSS6.1AI score0.04272EPSS

Exploits0References6Affected Software1

Prion•added 2006/03/24 2:2 a.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in statusimage.php in PHP Live! 3.0 allows remote attackers to inject arbitrary web script or HTML via the baseurl parameter...

4.3CVSS6.2AI score0.00504EPSS

Exploits2References5Affected Software1

Prion•added 2006/03/22 1:2 a.m.•15 views

Cross site scripting

Cross-site scripting XSS vulnerability in VeriSign haydn.exe, as used in Managed PKI MPKI 6.0, allows remote attackers to inject arbitrary web script or HTML via a javascript URI in the VHTMLFILE parameter...

4.3CVSS6.1AI score0.00864EPSS

Exploits1References7Affected Software1

Prion•added 2006/03/21 1:6 a.m.•12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in Noah's Classifieds 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 method or 2 list parameter...

6.8CVSS6.1AI score0.01631EPSS

Exploits0References6Affected Software1

Cvelist•added 2006/03/21 1:0 a.m.•14 views

CVE-2006-1325

Cross-site scripting XSS vulnerability in Streber 0.055 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors...

5.7AI score0.0124EPSS

Exploits0References5

CVE•added 2006/03/19 2:0 a.m.•51 views

CVE-2006-1264

CVE-2006-1264 affects xhawk.net discussion 2.0 beta2. The issue is a Cross-site scripting (XSS) vulnerability where a Javascript URI in a BBCode img tag can be exploited to inject arbitrary script/HTML. The core problem is user-supplied content within a BBCode image tag not properly sanitized, en...

4.3CVSS5.7AI score0.00521EPSS

Exploits1References5Affected Software1

Cvelist•added 2006/03/19 2:0 a.m.•12 views

CVE-2006-1266

Cross-site scripting XSS vulnerability in ServiceRequests.asp in VPMi Enterprise 3.3 allows remote attackers to inject arbitrary web script or HTML via the RequestNameDisplay parameter...

5.7AI score0.00521EPSS

Exploits1References5

Prion•added 2006/03/19 1:2 a.m.•16 views

Cross site scripting

Cross-site scripting XSS vulnerability in guestbook.php in Soren Boysen SkullSplitter PHP Guestbook 2.6 allows remote attackers to inject arbitrary web script or HTML via the url parameter...

2.6CVSS6.2AI score0.0103EPSS

Exploits1References10Affected Software1

OSV•added 2006/03/19 1:2 a.m.•7 views

CVE-2006-1258

Cross-site scripting XSS vulnerability in phpMyAdmin 2.8.0.1 allows remote attackers to inject arbitrary web script or HTML via the settheme parameter...

5.7AI score

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by