CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

CNNVD•added 2025/03/17 12:0 a.m.•2 views

Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞

Dassault Systèmes ENOVIA Collaborative Industry Innovator is an essential toolset for real-time, secure and structured collaboration and product content management for an engineering team at Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Collaborative Indust...

8.7CVSS5.9AI score0.00352EPSS

Exploits0References2

CNVD•added 2022/05/08 12:0 a.m.•20 views

Cisco Firepower Management Center Cross-Site Scripting Vulnerability (CNVD-2022-68894)

A cross-site scripting vulnerability exists in Cisco Firepower Management Center FMC, a next-generation firewall management center software from Cisco. The vulnerability stems from a Web management interface that does not adequately authenticate user input. An authenticated remote attacker could...

3.5CVSS3.2AI score0.00294EPSS

Exploits0

CNVD•added 2022/05/08 12:0 a.m.•19 views

Cisco Firepower Management Center Cross-Site Scripting Vulnerability (CNVD-2022-68893)

3.5CVSS3.2AI score0.00192EPSS

Exploits0

CNVD•added 2022/01/14 12:0 a.m.•14 views

Cisco Security Manager Cross-Site Scripting Vulnerability (CNVD-2022-06379)

Cisco Security Manager CSM is a set of enterprise-class management applications from Cisco USA that are used to configure firewall, VPN, and intrusion protection security services on Cisco networks and security devices.Cisco Security Manager is vulnerable to a cross-site scripting vulnerability...

6.1CVSS2.6AI score0.00234EPSS

Exploits0References1

Tenable Nessus•added 2016/07/11 12:0 a.m.•72 views

ManageEngine ADSelfService Plus < 5.3 Build 5313 PasswordSelfServiceAPI XSS

The ManageEngine ADSelfService Plus application running on the remote host is affected by a cross-site scripting XSS vulnerability in PasswordSelfServiceAPI due to improper sanitization of user-supplied input to the 'PSSOPERATION' parameter. An unauthenticated, remote attacker can exploit this, v...

5.2AI score

Exploits0References2

Packet Storm•added 2015/03/20 12:0 a.m.•35 views

EMC M&R (Watch4net) Alerting Frontend XSS

------------------------------------------------------------------------ Cross-Site Scripting vulnerability in EMC M&R Watch4net Alerting Frontend ------------------------------------------------------------------------ Han Sahin, November 2014...

3.5CVSS6.4AI score0.0024EPSS

Exploits6

OpenVAS•added 2011/05/11 12:0 a.m.•8 views

WordPress Inline Gallery 'do' Parameter Cross-site Scripting Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

7.2AI score

Exploits0References3

OpenVAS•added 2011/03/16 12:0 a.m.•11 views

WordPress PHP Speedy Plugin 'title' Parameter Cross Site Scripting Vulnerability

WordPress PHP Speedy Plugin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.2AI score

Exploits0References1

OpenVAS•added 2011/03/10 12:0 a.m.•9 views

WordPress IWantOneButton 'post_id' Parameter Cross-site Scripting Vulnerability

7.2AI score

Exploits0References3

OpenVAS•added 2011/02/07 12:0 a.m.•13 views

WordPress RSS Feed Reader Plugin 'rss_url' Parameter Cross Site Scripting Vulnerability

4.3CVSS6.6AI score0.03575EPSS

Exploits1References4

OpenVAS•added 2010/04/13 12:0 a.m.•30 views

MoinMoin 'Despam' Action Cross-Site Scripting Vulnerability

This host is running MoinMoin Wiki and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmoinmoinwikixssvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ MoinMoin 'Despam' Action Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbo...

3.5CVSS5.9AI score0.00564EPSS

Exploits1References4

OpenVAS•added 2009/08/26 12:0 a.m.•17 views

ELOG Remote Buffer Overflow and Cross Site Scripting Vulnerabilities

This host has ELOG installed and is prone multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodelogmultvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ ELOG Remote Buffer Overflow and Cross Site Scripting Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2009 SecPod,...

10CVSS0.9AI score0.00603EPSS

Exploits0References3

securityvulns•added 2009/05/21 12:0 a.m.•57 views

CORE-2009-0109 - Multiple XSS in Sun Communications Express

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Multiple XSS in Sun Communications Express 1. Advisory Information Title: Multiple XSS in Sun Communications Express Advisory ID: CORE-2009-0109 Advisory URL:...

4.3CVSS5.9AI score0.08905EPSS

Exploits2

OpenVAS•added 2008/09/24 12:0 a.m.•7 views

Gentoo Security Advisory GLSA 200506-12 (mediawiki)

The remote host is missing updates announced in advisory GLSA 200506-12. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References3

OpenVAS•added 2008/08/22 12:0 a.m.•23 views

Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability

Adobe Presenter is prone to a cross-site scripting CSS vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.8AI score0.01957EPSS

Exploits1References4

Packet Storm•added 2008/02/23 12:0 a.m.•29 views

lotusquickr-xss.txt

description:Lotus Quickr, announced at Lotusphere 2007, is an evolution of Lotus QuickPlace ,The software use a weak xss filter that an attacker can bypass this xss filter. A remote user can create a specially crafted URL that, when loaded by a target user, will cause arbitrary scripting code to ...

7.4AI score

Exploits0

Tenable Nessus•added 2006/06/19 12:0 a.m.•21 views

FreeBSD : horde -- multiple parameter XSS vulnerabilities (09429f7c-fd6e-11da-b1cd-0050bf27ba24)

FrSIRT advisory ADV-2006-2356 reports : Multiple vulnerabilities have been identified in Horde Application Framework, which may be exploited by attackers to execute arbitrary scripting code. These flaws are due to input validation errors in the 'test.php' and 'templates/problem/problem.inc' scrip...

6.8CVSS5.7AI score0.04367EPSS

Exploits1References5

Tenable Nessus•added 2006/05/13 12:0 a.m.•14 views

FreeBSD : htdig -- XSS vulnerability (673aec6f-1cae-11da-bc01-000e0c2e438a)

Michael Krax reports a vulnerability within htdig. The vulnerability lies within an unsanitized config parameter, allowing a malicious attacker to execute arbitrary scripting code on the target's browser. This might allow the attacker to obtain the user's cookies which are associated with the sit...

6.8CVSS5.9AI score0.04725EPSS

Exploits0References3

FreeBSD•added 2005/02/03 12:0 a.m.•22 views

htdig -- cross site scripting vulnerability

6.8CVSS7.1AI score0.04725EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by