Lucene search
K

7613 matches found

OpenVAS
OpenVAS
added 2014/04/15 12:0 a.m.34 views

Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Mac OS X

Adobe Reader is prone to cross site scripting and denial of service vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS5.9AI score0.4526EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2014/04/15 12:0 a.m.34 views

Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Linux

Adobe Reader is prone to cross site scripting and denial of service vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS5.9AI score0.4526EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2014/04/15 12:0 a.m.43 views

Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities - Windows

Adobe Reader is prone to cross site scripting and denial of service vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS5.9AI score0.4526EPSS
Exploits3References5
CERT
CERT
added 2014/04/11 12:0 a.m.32 views

Fortinet FortiADC D-series contains a cross-site scripting vulnerability

Overview Fortinet FortiADC D-series 3.2.0, and possibly earlier versions, contains a cross-site scripting vulnerability. CWE-79 Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' Fortinet FortiADC D-series 3.2.0, and possibly earlier versions,...

4.3CVSS6.1AI score0.01864EPSS
Exploits2References4
Cvelist
Cvelist
added 2014/04/10 2:0 p.m.30 views

CVE-2014-0331

Cross-site scripting XSS vulnerability in the web administration interface in FortiADC with firmware before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the locale parameter to guipartA/...

5.7AI score0.01864EPSS
Exploits2References5
Packet Storm
Packet Storm
added 2014/04/04 12:0 a.m.62 views

ECE Projects Cross Site Scripting

ECE Projects XSS Cross-site Scripting Security Vulnerabilities Exploit Title: ECE Projects XSS Cross-site Scripting Security Vulnerabilities Vendor: ECE Projektmanagement G.m.b.H. & Co. KG ECE Product: ECE Projects Vulnerable Versions: Tested Version: Advisory Publication: April 01, 2015 Latest...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2014/04/04 12:0 a.m.22 views

ownCloud Multiple XSS Vulnerabilities-01 (Apr 2014)

ownCloud is prone to multiple XSS vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; if...

6.1CVSS5.8AI score0.02164EPSS
Exploits1References4
CERT
CERT
added 2014/04/01 12:0 a.m.22 views

Pearson eSIS Enterprise Student Information System XSS vulnerability

Overview Pearson eSIS Enterprise Student Information System contains a XSS vulnerability. Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'Pearson eSIS Enterprise Student Information System contains a reflected cross-site scripting vulnerabilit...

4.3CVSS6AI score0.01012EPSS
Exploits1References1
Cvelist
Cvelist
added 2014/03/28 3:0 p.m.27 views

CVE-2013-0734

Multiple cross-site scripting XSS vulnerabilities in the Mingle Forum plugin before 1.0.34 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 searchwords parameter in a search action to wpf.class.php or 2 togroupusers parameter in an addusertogroup action to...

5.9AI score0.02132EPSS
Exploits0References6
CERT
CERT
added 2014/03/27 12:0 a.m.27 views

ManageEngine OpStor Build 8300 and earlier contain multiple vulnerabilities

Overview ManageEngine OpStor Build 8300 and earlier contain multiple vulnerabilities. Description CWE-472: External Control of Assumed-Immutable Web ParameterIt has been reported that the 'Properties.do?name=' module is vulnerable to an ‘unauthorized function call’ caused by server failing to...

6.5CVSS6.5AI score0.05533EPSS
Exploits1References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2014/03/20 5:2 a.m.4 views

Silex vulnerable to cross-site scripting

Overview Silex is a software to build websites. Silex contains a cross-site scripting vulnerability. Yuji Tounai of bogus.jp reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An arbitrary script may be execute...

4.3CVSS6AI score0.01161EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2014/03/14 3:55 p.m.31 views

CVE-2013-0298

Multiple cross-site scripting XSS vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted iCalendar file to the calendar application, the 2 dir or 3 file parameter to apps/filespdfviewer/viewer.php, or the 4 mountpoint parameter...

4.3CVSS5.9AI score0.01005EPSS
Exploits0References2
Prion
Prion
added 2014/03/14 2:55 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Brother MFC-9970CDW printer with firmware G 1.03 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to admin/logtonet.html or 2 kind parameter to fax/copysettings.html, a different vulnerability than...

4.3CVSS5.9AI score0.02018EPSS
Exploits4References6Affected Software1
Packet Storm
Packet Storm
added 2014/03/10 12:0 a.m.23 views

QNX 6.4.x / 6.5.x ifwatchd Local Root

!/bin/sh QNX 6.4.x/6.5.x ifwatchd local root exploit by cenobyte 2013 - vulnerability description: Setuid root ifwatchd watches for addresses added to or deleted from network interfaces and calls up/down scripts for them. Any user can launch ifwatchd and provide arbitrary up/down scripts...

Exploits0
Prion
Prion
added 2014/03/03 6:55 p.m.18 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the 1 callbackmulticheck, 2 callbackradio, and 3 callbackwysiwygin functions in mfrhclass.settings-api.php in the Media File Renamer plugin 1.7.0 for WordPress allow remote authenticated users with permissions to add media or edit media to inje...

2.1CVSS5.8AI score0.01593EPSS
Exploits3References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2014/02/26 12:0 a.m.30 views

JVN#87797318: XooNIps vulnerable to cross-site scripting

XooNIps provided by Neuroinformatics Japan Center, RIKEN Brain Science Institute is a module of XOOPS. XooNIps contains an issue in processing the output of input character string to the web page, which may result in a cross-site scripting vulnerability. Impact An arbitrary script may be executed...

4.3CVSS5.9AI score0.01171EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2014/02/21 5:12 a.m.5 views

Blackboard Vista/CE vulnerable to cross-site scripting

Overview Blackboard Vista/CE is a learning management system LMS. Blackboard Vista/CE contains a cross-site scripting vulnerability. ICHIHARA Ryohei of SERAKU Co.,Ltd. reported this vulnerability to the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning...

4.3CVSS6.1AI score0.01773EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2014/02/19 12:0 a.m.24 views

Mozilla Thunderbird Multiple XSS Vulnerabilities (Feb 2014) - Windows

Mozilla Thunderbird is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS9.3AI score0.07697EPSS
Exploits5References5
OpenVAS
OpenVAS
added 2014/02/19 12:0 a.m.32 views

SeaMonkey Multiple XSS Vulnerabilities (Feb 2014) - Mac OS X

SeaMonkey is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS9.3AI score0.07697EPSS
Exploits5References5
OpenVAS
OpenVAS
added 2014/02/19 12:0 a.m.31 views

SeaMonkey Multiple XSS Vulnerabilities (Feb 2014) - Windows

SeaMonkey is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS9.3AI score0.07697EPSS
Exploits5References5
Rows per page
Query Builder