Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

67 matches found

NVD
NVDadded 2005/10/23 10:2 a.m.11 views

CVE-2005-3292

Multiple cross-site scripting XSS vulnerabilities in Xeobook 0.93 allow remote attackers to inject arbitrary web script or HTML via Javascript events in tages such as...

4.3CVSS5.8AI score0.00362EPSS
Exploits0References2
Cvelist
Cvelistadded 2005/06/28 4:0 a.m.9 views

CVE-2002-1965

Cross-site scripting XSS vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attackers to inject arbitrary web script or HTML via the 1 Javascript events, as demonstrated via an onerror event in an IMG SRC tag or 2 User-Agent field in an HTTP GET request...

5.7AI score0.00401EPSS
Exploits1References3
CVE
CVEadded 2005/05/10 4:0 a.m.48 views

CVE-2004-1935

CVE-2004-1935 describes a cross-site scripting (XSS) vulnerability in SCT Campus Pipeline where remote attackers can inject arbitrary web script or HTML via onload, onmouseover, and other Javascript events in an email attachment. The NVD metrics indicate the impact is limited to partial integrity...

4.3CVSS6AI score0.00646EPSS
Exploits1References4Affected Software1
CERT
CERTadded 2004/09/17 12:0 a.m.17 views

Mozilla fails to properly handle script-generated events

Overview There is a vulnerability the way Mozilla handles script-generated events that could allow a remote, unauthenticated attacker to access data contained on the victim's clipboard. Description Mozilla is an open-source web browser, email/newsgroup client, IRC client, and HTML editor availabl...

6.7AI score
Exploits0References4
NVD
NVDadded 2004/03/15 5:0 a.m.15 views

CVE-2004-0191

Mozilla before 1.4.2 executes Javascript events in the context of a new page while it is being loaded, allowing it to interact with the previous page zombie document and enable cross-domain and cross-site scripting XSS attacks, as demonstrated using onmousemove events...

6.8CVSS5.6AI score0.01816EPSS
Exploits1References10
NVD
NVDadded 2002/12/31 5:0 a.m.5 views

CVE-2002-1965

Cross-site scripting XSS vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attackers to inject arbitrary web script or HTML via the 1 Javascript events, as demonstrated via an onerror event in an IMG SRC tag or 2 User-Agent field in an HTTP GET request...

4.3CVSS5.7AI score0.00401EPSS
Exploits1References3
securityvulns
securityvulnsadded 2001/11/05 12:0 a.m.39 views

Minor IE System Info Disclosure

I just stumbled across this the other day when i was playing... a remote server can poll a surfers computer and determin some applications they have installed by trying a load an image with the file:// protocol. if the file is found on disk the javascript onload event fires..if not the onerror...

7.2AI score
Exploits0
Rows per page
Query Builder