CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in forum.php in Jamroom before 4.1.9 allows remote attackers to inject arbitrary web script or HTML via the postid parameter in a modify action...

4.3CVSS5.9AI score0.00164EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 7:20 p.m.•4 views

CVE-2008-3376

Multiple unspecified vulnerabilities in JamRoom before 3.4.0 have unknown impact and attack vectors...

10CVSS7.3AI score0.00456EPSS

Exploits0References1

CNVD•added 2017/06/06 12:0 a.m.•2 views

Jamroom Cross-Site Scripting Vulnerability

Jamroom is a social media content management system. The system helps build social networks, content communities, blogs and more. A cross-site scripting vulnerability exists in versions of Jamroom prior to 4.2.7. A remote attacker can exploit this vulnerability to inject arbitrary web script or...

6.1CVSS5.9AI score0.00234EPSS

Exploits1References1

Prion•added 2017/06/04 10:29 p.m.•6 views

Cross site scripting

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

4.3CVSS6.2AI score0.00234EPSS

Exploits1References2Affected Software1

NVD•added 2017/06/04 10:29 p.m.•11 views

CVE-2012-6705

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

6.1CVSS6.1AI score0.00234EPSS

Exploits1References2

CVE•added 2017/06/03 10:0 p.m.•47 views

CVE-2012-6705

CPE/affected software: Jamroom (prior to 4.2.7). Vulnerability: Cross-Site Scripting (XSS) via the Status Update field. Root cause / vector: inputs in the Status Update field are susceptible to script/HTML injection. Impact (as stated): XSS exists in Jamroom before 4.2.7; detailed exploit scenari...

6.1CVSS6AI score0.00234EPSS

Exploits1References2Affected Software1

Cvelist•added 2017/06/03 10:0 p.m.•14 views

CVE-2012-6705

Cross Site Scripting XSS exists in Jamroom before 4.2.7 via the Status Update field...

6AI score0.00234EPSS

Exploits1References2

NVD•added 2014/10/20 3:55 p.m.•10 views

CVE-2014-5098

Cross-site scripting XSS vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/...

4.3CVSS5.6AI score0.00305EPSS

Exploits3References5

Prion•added 2014/10/20 3:55 p.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/...

4.3CVSS6.1AI score0.00305EPSS

Exploits3References5Affected Software1

CVE•added 2014/10/20 3:0 p.m.•42 views

CVE-2014-5098

CVE-2014-5098 affects Jamroom’s Search module up to version 1.2.1 (reported as 5.2.6 in Jamroom context). The vulnerability arises from insufficient sanitization of user-supplied data in the /search/results/ query string, enabling reflected XSS via crafted links. Impact is remote execution of arb...

4.3CVSS5.7AI score0.00305EPSS

Exploits3References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by