Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2002-1476

Malware in sbrugna...

4.3CVSS6.4AI score0.00591EPSS
Exploits1References5
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.16 views

Lycos HTMLGear guestGear CSS HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5728/info Lycos htmlGEAR guestGEAR does not sanitize HTML from CSS Cascading Style-Sheets elements in guestbook fields. An attacker could capitalize on this situation to include arbitrary HTML and script code in a guestbo...

7.1AI score
Exploits0
NVD
NVDadded 2006/06/05 5:2 p.m.9 views

CVE-2006-2808

Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...

6.8CVSS5.7AI score0.00411EPSS
Exploits0References2
Prion
Prionadded 2006/06/05 5:2 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...

6.8CVSS6.1AI score0.00411EPSS
Exploits0References2
CVE
CVEadded 2006/06/05 5:0 p.m.36 views

CVE-2006-2808

CVE-2006-2808 is a cross-site scripting vulnerability in Lycos Tripod htmlGEAR guestGEAR (Guest Gear). An attacker can inject arbitrary script via a guestbook post containing a javascript URI in the SRC attribute of a BR element after an extra "iframe" tagname and a double ">", potentially byp...

6.8CVSS5.7AI score0.00411EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2006/06/05 5:0 p.m.11 views

CVE-2006-2808

Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...

5.7AI score0.00411EPSS
Exploits0References2
Cvelist
Cvelistadded 2004/09/01 4:0 a.m.14 views

CVE-2002-1493

Cross-site scripting XSS vulnerability in Lycos HTMLGear guestbook allows remote attackers to inject arbitrary script via 1 STYLE attributes or 2 SRC attributes in an IMG tag...

5.9AI score0.00591EPSS
Exploits1References4
CVE
CVEadded 2004/09/01 4:0 a.m.38 views

CVE-2002-1493

The CVE-2002-1493 entry describes a cross-site scripting (XSS) vulnerability in the Lycos HTMLGear guestbook. The flaw allows remote attackers to inject arbitrary JavaScript via (1) STYLE attributes or (2) SRC attributes in an IMG tag. The provided sources confirm the vulnerability description bu...

4.3CVSS6.2AI score0.00591EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2003/04/02 5:0 a.m.9 views

CVE-2002-1493

Cross-site scripting XSS vulnerability in Lycos HTMLGear guestbook allows remote attackers to inject arbitrary script via 1 STYLE attributes or 2 SRC attributes in an IMG tag...

4.3CVSS5.9AI score0.00591EPSS
Exploits1References4
Rows per page
Query Builder