Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Veracode
Veracodeadded 2019/09/10 1:22 a.m.15 views

Cross-site Scripting (XSS)

weison-tech/yii2-rbac is vulnerable to cross-site scripting XSS. The attack is possible because it does not sanitize a name filed to /contact.html via protected\core\modules\home\models\Contact.php , allowing an attacker to inject arbitrary script through it...

6.1CVSS3.3AI score0.0024EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2019/09/09 3:15 a.m.9 views

CVE-2019-16130

YII2-CMS v1.0 has XSS in protected\core\modules\home\models\Contact.php via a name field to /contact.html...

6.1CVSS5.9AI score
Exploits0References2
Prion
Prionadded 2019/09/09 3:15 a.m.10 views

Design/Logic Flaw

YII2-CMS v1.0 has XSS in protected\core\modules\home\models\Contact.php via a name field to /contact.html...

4.3CVSS5.8AI score0.0024EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2019/09/09 2:5 a.m.11 views

CVE-2019-16130

YII2-CMS v1.0 has XSS in protected\core\modules\home\models\Contact.php via a name field to /contact.html...

5.9AI score0.0024EPSS
Exploits1References2
Openbugbounty
Openbugbountyadded 2018/07/08 7:58 a.m.10 views

barbaranettelbeck.com XSS vulnerability

Open Bug Bounty ID: OBB-642193 Description| Value ---|--- Affected Website:| barbaranettelbeck.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbountyadded 2018/05/22 4:10 p.m.7 views

calendario-365.com.br XSS vulnerability

Open Bug Bounty ID: OBB-620329 Description| Value ---|--- Affected Website:| calendario-365.com.br Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbountyadded 2015/11/25 8:36 a.m.10 views

deurenservicecentrum.nl XSS vulnerability

Vulnerable URL: https://www.deurenservicecentrum.nl/contact.html Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4809035 Google Pagerank| 0 VIP website status:| No Check...

6.3AI score
Exploits0
Openbugbounty
Openbugbountyadded 2015/09/20 12:48 p.m.11 views

dsi-corp.com XSS vulnerability

Vulnerable URL: http://www.dsi-corp.com/contact.html%E2%80%8E? Details: Description| Value ---|--- Patched:| Yes, at 11.10.2015 Latest check for patch:| 11.10.2015 13:16 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 997120 Google Pagerank| 3 VIP website status...

6.3AI score
Exploits0
Prion
Prionadded 2009/11/16 8:30 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Bractus SunTrack allow remote attackers to inject arbitrary web script or HTML via the 1 title parameter to newprofile.html; the 2 firstname, 3 lastname, and 4 company parameters to signup/signup.html; and the 5 firstname, 6 lastname, and 7...

4.3CVSS6.1AI score0.00225EPSS
Exploits0References1
Rows per page
Query Builder