CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in forum.php in Jamroom before 4.1.9 allows remote attackers to inject arbitrary web script or HTML via the postid parameter in a modify action...

4.3CVSS5.9AI score0.01452EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 7:20 p.m.•5 views

CVE-2008-3376

Multiple unspecified vulnerabilities in JamRoom before 3.4.0 have unknown impact and attack vectors...

10CVSS7.3AI score0.01495EPSS

Exploits0References1

CNVD•added 2017/06/06 12:0 a.m.•3 views

Jamroom Cross-Site Scripting Vulnerability

Jamroom is a social media content management system. The system helps build social networks, content communities, blogs and more. A cross-site scripting vulnerability exists in versions of Jamroom prior to 4.2.7. A remote attacker can exploit this vulnerability to inject arbitrary web script or...

6.1CVSS5.9AI score0.00818EPSS

Exploits1References1

NVD•added 2017/06/04 10:29 p.m.•19 views

CVE-2012-6705

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

6.1CVSS6.1AI score0.00818EPSS

Exploits1References2

Prion•added 2017/06/04 10:29 p.m.•10 views

Cross site scripting

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

4.3CVSS6.2AI score0.00818EPSS

Exploits1References2Affected Software1

Cvelist•added 2017/06/03 10:0 p.m.•23 views

CVE-2012-6705

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

6AI score0.00818EPSS

Exploits1References2

CVE•added 2017/06/03 10:0 p.m.•50 views

CVE-2012-6705

CPE/affected software: Jamroom (prior to 4.2.7). Vulnerability: Cross-Site Scripting (XSS) via the Status Update field. Root cause / vector: inputs in the Status Update field are susceptible to script/HTML injection. Impact (as stated): XSS exists in Jamroom before 4.2.7; detailed exploit scenari...

6.1CVSS6AI score0.00818EPSS

Exploits1References2Affected Software1

NVD•added 2014/10/20 3:55 p.m.•22 views

CVE-2014-5098

Cross-site scripting XSS vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/...

4.3CVSS5.6AI score0.01864EPSS

Exploits3References5

Prion•added 2014/10/20 3:55 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/...

4.3CVSS6.1AI score0.01864EPSS

Exploits3References5Affected Software1

Cvelist•added 2014/10/20 3:0 p.m.•28 views

CVE-2014-5098

Cross-site scripting XSS vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/...

5.6AI score0.01864EPSS

Exploits3References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by