CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Cvelist•added 2010/09/17 7:0 p.m.•19 views

CVE-2010-3462

Cross-site scripting XSS vulnerability in backend/plugin/Registration/index.php in Mollify 1.6, 1.6.5.5, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the confirm parameter. NOTE: some of these details are obtained from third party information...

5.8AI score0.01134EPSS

Exploits1References4

CVE•added 2010/09/17 7:0 p.m.•51 views

CVE-2010-3462

Mollify is affected by a Cross-site Scripting (XSS) vulnerability in backend/plugin/Registration/index.php, affecting Mollify 1.6 and 1.6.5.5 (and possibly other versions). The issue allows an attacker to inject arbitrary script/HTML via the confirm parameter. OpenVAS entries describe the flaw as...

4.3CVSS6AI score0.01134EPSS

Exploits1References4Affected Software1

Packet Storm•added 2010/09/16 12:0 a.m.•18 views

Mollify 1.6 Cross Site Scripting

------------------------------------------------------------------------ Software................Mollify 1.6 Vulnerability...........Reflected Cross-site Scripting Download................http://freshmeat.net/projects/mollify Release Date............9/15/2010 Tested On...............Windows Vista...

Exploits0

Exploit DB•added 2010/09/15 12:0 a.m.•18 views

Mollify 1.6 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43262/info Mollify is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary JavaScript code in the browser of an unsuspecting user in the contex...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by