CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in NBBC before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag...

4.3CVSS5.7AI score0.00475EPSS

Exploits0References6

Prion•added 2009/06/25 11:14 p.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in NBBC before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag...

4.3CVSS6.1AI score0.00475EPSS

Exploits0References6Affected Software1

Cvelist•added 2009/06/25 9:0 p.m.•12 views

CVE-2009-2217

Cross-site scripting XSS vulnerability in NBBC before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag...

5.7AI score0.00475EPSS

Exploits0References6

Prion•added 2006/05/09 10:2 a.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in myWebland MyBloggie 2.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag...

4.3CVSS6.1AI score0.00416EPSS

Exploits1References4Affected Software1

NVD•added 2006/05/09 10:2 a.m.•11 views

CVE-2006-2269

Cross-site scripting XSS vulnerability in myWebland MyBloggie 2.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag...

4.3CVSS5.6AI score0.00416EPSS

Exploits1References4

Prion•added 2006/04/11 11:2 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in inc/functionspost.php in MyBB aka MyBulletinBoard 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, although it might stem from the...

5.1CVSS5.9AI score0.01631EPSS

Exploits0References7Affected Software1

NVD•added 2006/03/19 2:2 a.m.•8 views

CVE-2006-1264

Cross-site scripting XSS vulnerability in xhawk.net discussion 2.0 beta2 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag...

4.3CVSS5.6AI score0.00521EPSS

Exploits1References5

Prion•added 2006/03/19 2:2 a.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in xhawk.net discussion 2.0 beta2 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag...

4.3CVSS6.1AI score0.00521EPSS

Exploits1References5Affected Software1

CVE•added 2006/03/19 2:0 a.m.•45 views

CVE-2006-1264

CVE-2006-1264 affects xhawk.net discussion 2.0 beta2. The issue is a Cross-site scripting (XSS) vulnerability where a Javascript URI in a BBCode img tag can be exploited to inject arbitrary script/HTML. The core problem is user-supplied content within a BBCode image tag not properly sanitized, en...

4.3CVSS5.7AI score0.00521EPSS

Exploits1References5Affected Software1

NVD•added 2006/03/10 2:2 a.m.•8 views

CVE-2006-1130

Cross-site scripting XSS vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag...

4.3CVSS5.6AI score0.01156EPSS

Exploits1References10

Cvelist•added 2006/03/10 2:0 a.m.•11 views

CVE-2006-1130

Cross-site scripting XSS vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag...

5.6AI score0.01156EPSS

Exploits1References10

Prion•added 2006/01/22 8:3 p.m.•12 views

Cross site scripting

Cross-site scripting XSS vulnerability in Phpclanwebsite aka PCW allows remote attackers to inject arbitrary web script or HTML via a javascript URI in a BBCode img tag...

4.3CVSS6.1AI score0.00756EPSS

Exploits0References5Affected Software1

Cvelist•added 2006/01/22 8:0 p.m.•13 views

CVE-2006-0366

Cross-site scripting XSS vulnerability in Phpclanwebsite aka PCW allows remote attackers to inject arbitrary web script or HTML via a javascript URI in a BBCode img tag...

5.6AI score0.00756EPSS

Exploits0References5

OpenVAS•added 2005/11/03 12:0 a.m.•15 views

ASP-DEv XM Forum IMG Tag Script Injection Vulnerability

The remote web server contains an ASP script which is vulnerable to a cross site scripting issue. Description : The remote host appears to be running the ASP-DEV XM Forum. There is a flaw in the remote software which may allow anyone to inject arbitrary HTML and script code through the BBCode IMG...

4.3CVSS6.3AI score0.00533EPSS

Exploits1

Cvelist•added 2005/05/10 4:0 a.m.•11 views

CVE-2004-2038

Cross-site scripting XSS vulnerability in Land Down Under LDU before LDU 700 allows remote attackers to inject arbitrary web script or HTML via a BBcode img tag in 1 functions.php, 2 header.php or 3 auth.inc.php...

5.7AI score0.11518EPSS

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by