Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

98 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 10:9 p.m.3 views

CVE-2022-29540

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,...

6.1CVSS6AI score0.01145EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/22 12:24 p.m.10 views

CVE-2025-23175 Tecnick - Multiple XSS (CWE-79)

Multiple XSS CWE-79...

6.1CVSS6.2AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/22 12:24 p.m.14 views

CVE-2025-23175 Tecnick - Multiple XSS (CWE-79)

Multiple XSS CWE-79...

6.1CVSS0.00283EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/22 12:37 a.m.7 views

CVE-2023-51338

PHPJabbers Meeting Room Booking System v1.0 is vulnerable to Multiple Stored Cross-Site Scripting XSS in the "title, name" parameters of index.php page...

5.4CVSS5.6AI score0.00119EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2024/08/28 6:27 a.m.17 views

CVE-2024-4554 Multiple xss vulnerability in NetIQ Access Manager

Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting XSS attack. This issue affects Access Manager before 5.0.4.1 and 5.1...

7.3CVSS5.6AI score0.00497EPSS
Exploits0References2
CVE
CVEadded 2023/09/03 2:3 p.m.36 views

CVE-2023-37222

CVE-2023-37222 affects Farsight Tech Nordic AB ProVide 14.5. The vulnerability is multiple Cross-Site Scripting (CWE-79) in the web interface that can be exploited by a user with administrator privileges, with user interaction required. CVSS details from NVD indicate a low/moderate overall impact...

4.8CVSS5.1AI score0.00081EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Stormadded 2023/07/17 12:0 a.m.318 views

ProjeQtOr Project Management System 10.4.1 Cross Site Scripting

Exploit Title: ProjeQtOr Project Management System V10.4.1 - Multiple XSS Version: V10.4.1 Bugs: Multiple XSS Technology: PHP Vendor URL: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV10.4.1.zip/download Date of found: 09.07.2023 Author:...

7.1AI score
Exploits0
0day.today
0day.todayadded 2023/07/15 12:0 a.m.176 views

ProjeQtOr Project Management System v10.4.1 - Multiple XSS Vulnerabilities

Exploit Title: ProjeQtOr Project Management System V10.4.1 - Multiple XSS Version: V10.4.1 Bugs: Multiple XSS Technology: PHP Vendor URL: https://www.projeqtor.org Software Link: https://sourceforge.net/projects/projectorria/files/projeqtorV10.4.1.zip/download Date of found: 09.07.2023 Author:...

7.1AI score
Exploits0
FreeBSD
FreeBSDadded 2023/05/17 12:0 a.m.11 views

phpmyfaq -- multiple vulnerabilities

phpmyfaq developers report: Multiple XSS vulnerabilities...

6.5AI score
Exploits0References2
OpenVAS
OpenVASadded 2023/03/14 12:0 a.m.43 views

osTicket < 1.16.6, 1.17.x < 1.17.3 Multiple XSS Vulnerabilities

osTicket is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

8.8CVSS7.5AI score0.01193EPSS
Exploits3References7
Prion
Prionadded 2022/06/02 2:15 p.m.10 views

Cross site scripting

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,...

4.3CVSS6AI score0.01145EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/05/31 8:34 p.m.13 views

CVE-2022-29540

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,...

6.1AI score0.01145EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/05/20 8:48 p.m.13 views

CVE-2022-29432 WordPress wpDataTables plugin <= 2.1.27 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities

Multiple Authenticated administrator or higher user role Persistent Cross-Site Scripting XSS vulnerabilities in TMS-Plugins wpDataTables plugin = 2.1.27 on WordPress via &data-link-text, &data-link-url, &data, &data-shortcode, &data-star-num vulnerable parameters...

3.4CVSS4.4AI score0.00224EPSS
Exploits0References2
OSV
OSVadded 2022/05/03 3:25 a.m.32 views

GHSA-3P86-XGRQ-M6P6 Improper Neutralization of Input During Web Page Generation in Apache Tomcat

Multiple cross-site scripting XSS vulnerabilities in the HTML Manager Interface in Apache Tomcat 5.5 before 5.5.32, 6.0 before 6.0.30, and 7.0 before 7.0.6 allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the display-name tag...

4.3CVSS5.5AI score0.25792EPSS
Exploits2References37
Cvelist
Cvelistadded 2022/03/23 10:6 p.m.8 views

CVE-2022-25269

Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...

6.2AI score0.00317EPSS
Exploits0References2
Cvelist
Cvelistadded 2021/10/22 7:20 p.m.16 views

CVE-2020-36490

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component filemanageview.php via the activepath, keyword, tag, fmdo=x&filename, CKEditor and CKEditorFuncNum parameters...

5.5AI score0.00176EPSS
Exploits1References1
OpenVAS
OpenVASadded 2021/08/09 12:0 a.m.16 views

GetSimple CMS <= 3.4.0.9 Multiple XSS Vulnerabilities

GetSimple CMS is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

5.4CVSS6.4AI score0.0029EPSS
Exploits3References3
OpenVAS
OpenVASadded 2021/07/02 12:0 a.m.9 views

osTicket < 1.12.6 Multiple XSS Vulnerabilities

osTicket is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

6.1CVSS6.4AI score0.00328EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/03/29 12:0 a.m.16 views

OpenEMR 5.0.2 < 6.0.0.1 Multiple XSS Vulnerabilities

OpenEMR is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.8CVSS5AI score0.32457EPSS
Exploits0References3
OpenVAS
OpenVASadded 2020/11/06 12:0 a.m.10 views

phpLDAPadmin < 1.2.5 Multiple XSS Vulnerabilities - Linux

phpLDAPadmin is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.3AI score
Exploits0References1
Rows per page
Query Builder