CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

NVD•added 2020/10/28 7:15 p.m.•12 views

CVE-2020-27741

Multiple cross-site scripting XSS vulnerabilities in Citadel WebCit through 926 allow remote attackers to inject arbitrary web script or HTML via multiple pages and parameters. NOTE: this was reported to the vendor in a publicly archived "Multiple Security Vulnerabilities in WebCit 926" thread...

6.1CVSS6.2AI score0.00336EPSS

Exploits1References2

Prion•added 2020/03/12 2:15 p.m.•11 views

Cross site scripting

The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows Reflected XSS injecting arbitrary web script or HTML in admin/add-article.php by adding a question mark ? followed by the payload...

3.5CVSS4.9AI score0.00321EPSS

Exploits1References2Affected Software1

Prion•added 2020/02/03 3:15 p.m.•28 views

Cross site scripting

Cross-site Scripting XSS in UebiMiau 2.7.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the "selectedtheme" parameter in error.php...

4.3CVSS6.1AI score0.00297EPSS

Exploits3References2Affected Software1

NVD•added 2014/03/14 4:55 p.m.•14 views

CVE-2013-2150

Multiple cross-site scripting XSS vulnerabilities in js/viewer.js in ownCloud before 4.5.12 and 5.x before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to shared files...

3.5CVSS5.6AI score0.00185EPSS

Exploits0References1

Prion•added 2012/02/24 1:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the smwfOnSfSetTargetName function in extensions/SMWHalo/includes/SMWInitialize.php in Semantic Enterprise Wiki SMW+ 1.5.6, 1.6.02 and earlier allows remote attackers to inject arbitrary web script or HTML via the target parameter to...

4.3CVSS6.2AI score0.00446EPSS

Exploits1References5Affected Software1

Prion•added 2010/11/09 9:0 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in util/iconbrowser.php in the Horde Application Framework before 3.3.9 allows remote attackers to inject arbitrary web script or HTML via the subdir parameter...

4.3CVSS6AI score0.00737EPSS

Exploits1References7Affected Software1

NVD•added 2010/06/02 6:30 p.m.•7 views

CVE-2010-2130

Cross-site scripting XSS vulnerability in wflogin.jsp in Aris Global ARISg 5.0 allows remote attackers to inject arbitrary web script or HTML via the errmsg parameter...

4.3CVSS5.7AI score0.07322EPSS

Exploits1References6

Prion•added 2009/07/05 4:30 p.m.•7 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin/adminmenu.php in CMS Chainuk 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the menu parameter...

4.3CVSS6.2AI score0.00179EPSS

Exploits0References2Affected Software1

NVD•added 2008/07/10 6:41 p.m.•8 views

CVE-2008-3121

Multiple cross-site scripting XSS vulnerabilities in Xerox CentreWare Web CWW before 4.6.46 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.4AI score0.00285EPSS

Exploits0References4

Cvelist•added 2008/05/14 5:0 p.m.•11 views

CVE-2008-2200

Multiple cross-site scripting XSS vulnerabilities in Maian Weblog 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 keywords parameter to admin/index.php in a blogs search action, the 2 msgcharset and 3 msgheader9 parameters to admin/inc/header.php, and the 4 keywords...

5.8AI score0.00329EPSS

Exploits0References5

Prion•added 2007/02/23 3:28 a.m.•29 views

Cross site scripting

Cross-site scripting XSS vulnerability in Google Desktop allows remote attackers to bypass protection schemes and inject arbitrary web script or HTML, and possibly gain full access to the system, by using an XSS vulnerability in google.com to extract the signature for the internal web server, the...

7.6CVSS6AI score0.10445EPSS

Exploits1References8

Cvelist•added 2007/01/03 8:0 p.m.•15 views

CVE-2006-4577

Multiple cross-site scripting XSS vulnerabilities in The Address Book 1.04e allow remote attackers to inject arbitrary web script or HTML via Javascript events in the 1 email, 2 websites, and 3 groupAddName parameters in a save.php; the 4 errorMsg parameter in b index.php; and the 5 goTo and 6...

5.8AI score0.02193EPSS

Exploits1References8

Prion•added 2006/02/24 11:2 a.m.•10 views

Cross site scripting

Cross-site scripting vulnerability in Easy Forum 2.5 allows remote attackers to inject arbitrary web script or HTML via the image variable...

5CVSS6.6AI score0.12698EPSS

Exploits1References8Affected Software1

NVD•added 2005/12/11 11:3 a.m.•13 views

CVE-2005-4162

Cross-site scripting XSS vulnerability in calmake.pl in ACME PerlCal 2.99.20 allows remote attackers to inject arbitrary web script or HTML via the p0 parameter...

4.3CVSS5.7AI score0.00713EPSS

Exploits1References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by