CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in index.php in JCE-Tech SearchFeed Script allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS5.9AI score0.01188EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:7 a.m.•5 views

CVE-2009-3198

Cross-site scripting XSS vulnerability in search.php in JCE-Tech Affiliate Master Datafeed Parser Script 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS5.9AI score0.00322EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:16 p.m.•3 views

CVE-2009-3197

Cross-site scripting XSS vulnerability in search.php in JCE-Tech PHP Calendars Script allows remote attackers to inject arbitrary web script or HTML via the search parameter...

4.3CVSS6AI score0.00322EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:16 p.m.•4 views

CVE-2009-3196

Cross-site scripting XSS vulnerability in index.php in JCE-Tech PHP Video Script allows remote attackers to inject arbitrary web script or HTML via the key parameter...

4.3CVSS6AI score0.01188EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:16 p.m.•6 views

CVE-2009-3195

Multiple cross-site scripting XSS vulnerabilities in JCE-Tech Auction RSS Content Script 3.0 allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 rss.php and 2 search.php...

4.3CVSS6AI score0.02082EPSS

Exploits1References1

NVD•added 2014/12/31 9:59 p.m.•12 views

CVE-2014-8752

Multiple cross-site scripting XSS vulnerabilities in view.php in JCE-Tech PHP Video Script aka Video Niche Script 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 video or 2 title parameter...

4.3CVSS5.8AI score0.00359EPSS

Exploits1References3

Cvelist•added 2014/12/31 9:0 p.m.•14 views

CVE-2014-8752

5.8AI score0.00359EPSS

Exploits1References3

CVE•added 2014/12/31 9:0 p.m.•33 views

CVE-2014-8752

CVE-2014-8752 affects JCE-Tech “Video Niche Script” v4.0. The vulnerable component is view.php, with XSS via the (1) video or (2) title parameter, allowing remote attackers to inject arbitrary script/HTML. Root cause is cross-site scripting in the web application. Documented impact is general inp...

4.3CVSS5.9AI score0.00359EPSS

Exploits1References3Affected Software1

Packet Storm•added 2014/12/19 12:0 a.m.•40 views

JCE-Tech 4.0 Cross Site Scripting

CVE-2014-8752 JCE-Tech "Video Niche Script" XSS Cross-Site Scripting Security Vulnerability Exploit Title: JCE-Tech "Video Niche Script" /view.php Multiple Parameters XSS Product: "Video Niche Script" Vendor: JCE-Tech Vulnerable Versions: 4.0 Tested Version: 4.0 Advisory Publication: Nov 18, 2014...

4.3CVSS6.8AI score0.00359EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by