Lucene search
K

930 matches found

OSV
OSV
added 2007/05/02 12:19 a.m.9 views

CVE-2007-2423

Cross-site scripting XSS vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...

5.3AI score
Exploits0References5
Prion
Prion
added 2007/02/21 11:28 p.m.22 views

Cross site scripting

Cross-site scripting XSS vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2, and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177...

6.8CVSS5.8AI score0.03333EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2006/12/28 12:0 a.m.12 views

WordPress < 2.0.6 HTML Parameter Injection

Binary data 3873.prm...

6.8CVSS7AI score0.07357EPSS
Exploits2References3
Cvelist
Cvelist
added 2006/12/14 1:0 a.m.21 views

CVE-2006-6534

Multiple cross-site scripting XSS vulnerabilities in osCommerce 3.0a3 allow remote attackers to inject arbitrary web script or HTML via the 1 set parameter to admin/modules.php, the 2 selectedbox parameter to definitiva/admin/customers.php, the 3 lID parameter to admin/languagesdefinitions.php, o...

5.8AI score0.01116EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/07/07 12:0 a.m.28 views

CVE-2006-3426

Directory traversal vulnerability in a PatchLink Update Server PLUS before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and b Novell ZENworks 6.2 SR1 and earlier allows remote attackers to overwrite arbitrary files and directories via a .. dot dot sequence in the 1 action, 2 agentid, or 3 index parameters ...

6.8AI score0.02626EPSS
Exploits0References9
NVD
NVD
added 2006/02/04 12:6 a.m.10 views

CVE-2006-0534

Multiple cross-site scripting XSS vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the 1 ortak or 2 kat parameter...

4.3CVSS5.8AI score0.03513EPSS
Exploits1References5
Cvelist
Cvelist
added 2006/02/04 12:0 a.m.18 views

CVE-2006-0534

Multiple cross-site scripting XSS vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the 1 ortak or 2 kat parameter...

5.8AI score0.03513EPSS
Exploits1References5
Cvelist
Cvelist
added 2006/01/27 11:0 p.m.19 views

CVE-2005-4675

Cross-site scripting XSS vulnerability in list.php in Complete PHP Counter allows remote attackers to inject arbitrary web script or HTML via the c parameter...

5.8AI score0.01677EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2005/07/27 4:0 a.m.40 views

CVE-2005-2396

Cross-site scripting XSS vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template...

4.3CVSS5.5AI score0.02043EPSS
Exploits0
NVD
NVD
added 2005/06/17 4:0 a.m.18 views

CVE-2005-2004

Multiple cross-site scripting vulnerabilities in Ultimate PHP Board UPB 1.9.6 GOLD and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 ref parameter to login.php, 2 id or 3 page parameter to viewtopic.php, id parameter to 4 profile.php, 5 newpost.php, 6 email.php, ...

5CVSS6.2AI score0.01164EPSS
Exploits1References2
Rows per page
Query Builder