Lucene search
+L

51 matches found

osv
osv
added 2024/07/18 9:15 a.m.5 views

CVE-2024-5555

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘social-link-title’ parameter in all versions up to, and including, 5.6.5 due to insufficient input sanitization and...

6.4CVSS6AI score0.00499EPSS
Exploits0References3
attackerkb
attackerkb
added 2024/07/18 9:15 a.m.6 views

CVE-2024-5555

The Element Pack Elementor Addons Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘social-link-title’ parameter in all versions up to, and including, 5.6.5 due to insufficient input sanitization and...

6.4CVSS6.1AI score0.00499EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 4:41 a.m.2 views

SUSE CVE-2017-12978

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user...

5.4CVSS8.8AI score0.00789EPSS
Exploits0References3
nvd
nvd
added 2019/11/06 4:15 p.m.24 views

CVE-2017-18639

Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages...

6.1CVSS6AI score0.00894EPSS
Exploits1References1
cvelist
cvelist
added 2019/11/06 3:7 p.m.34 views

CVE-2017-18639

Progress Sitefinity CMS before 10.1 allows XSS via /Pages Parameter : Page Title, /Content/News Parameter : News Title, /Content/List Parameter : List Title, /Content/Documents/LibraryDocuments/incident-request-attachments Parameter : Document Title, /Content/Images/LibraryImages/newsimages...

6AI score0.00894EPSS
Exploits1References1
osv
osv
added 2019/06/30 2:15 p.m.9 views

DEBIAN-CVE-2019-13075

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a...

5.3CVSS5.6AI score0.01856EPSS
Exploits1References1
osv
osv
added 2019/06/30 2:15 p.m.28 views

UBUNTU-CVE-2019-13075

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser's language via vectors involving an IFRAME element, because text in that language is included in the title attribute of a LINK element for a non-HTML page. This is related to a...

5.3CVSS6.1AI score0.01856EPSS
Exploits1References3
cnvd
cnvd
added 2017/08/22 12:0 a.m.4 views

Cacti cross-site scripting vulnerability (CNVD-2017-26580)

Cacti is a set of open source network traffic monitoring and analysis tools from the Cacti team. The tool through snmpget to get the data , using RRDtool drawing graphs to analyze , and provide data and user management features . A cross-site scripting vulnerability exists in the lib/html.php fil...

5.4CVSS5.7AI score0.00789EPSS
Exploits0References1
osv
osv
added 2017/08/21 7:29 a.m.2 views

DEBIAN-CVE-2017-12978

lib/html.php in Cacti before 1.1.18 has XSS via the title field of an external link added by an authenticated user...

5.4CVSS6.1AI score0.00789EPSS
Exploits0References1
prion
prion
added 2012/12/03 9:55 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM Maximenu" permission to inject arbitrary web script or HTML via the 1 Menu Title 2 Link Title, 3 Path...

2.1CVSS5.5AI score0.00941EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2012/12/03 9:0 p.m.26 views

CVE-2012-5553

Multiple cross-site scripting XSS vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM Maximenu" permission to inject arbitrary web script or HTML via the 1 Menu Title 2 Link Title, 3 Path...

5.4AI score0.00941EPSS
Exploits0References5
Rows per page
Query Builder