Lucene search
K

81 matches found

OSV
OSV
added 2024/02/05 7:15 a.m.4 views

CVE-2024-24847

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jgadbois CalculatorPro Calculators allows Reflected XSS.This issue affects CalculatorPro Calculators: from n/a through 1.1.7...

6.1CVSS7.3AI score0.0033EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.5 views

PT-2023-28035 · Giovambattista Fazioli · Wp Bannerize Pro

Name of the Vulnerable Software and Affected Versions: Giovambattista Fazioli WP Bannerize Pro plugin versions = 1.6.9 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website without proper...

7.1CVSS6.1AI score0.00331EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/09/14 12:0 a.m.4 views

PT-2023-31351 · Librenms · Librenms

Name of the Vulnerable Software and Affected Versions: librenms versions prior to 23.9.0 Description: The issue is related to Cross-site Scripting XSS - Reflected in the GitHub repository librenms/librenms. This type of attack occurs when an application includes user input in its responses withou...

8.8CVSS8.2AI score0.00589EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.4 views

PT-2023-23681 · Wpdeveloper · Wpdeveloper Essential Addons For Elementor

Name of the Vulnerable Software and Affected Versions: WPDeveloper Essential Addons for Elementor Pro plugin versions = 5.4.8 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially...

7.1CVSS6.3AI score0.00371EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/09/14 12:0 a.m.5 views

PT-2022-23833 · Unknown · Alton Management System

Name of the Vulnerable Software and Affected Versions: Loan Management System version 1.0 Description: The Loan Management System has a persistent cross-site scripting issue. This means that an attacker can inject malicious scripts into the system, which will be executed by other users' browsers,...

5.4CVSS6.3AI score0.00491EPSS
Exploits2References6
OSV
OSV
added 2022/08/10 5:15 p.m.5 views

CVE-2022-20713

A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users of an affected device. This vulnerability is du...

6.1CVSS6.5AI score0.01302EPSS
Exploits0References1
OSV
OSV
added 2022/06/02 2:15 p.m.2 views

CVE-2022-29540

resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous application endpoints,...

6.1CVSS6.5AI score0.00734EPSS
Exploits0References2
CNVD
CNVD
added 2022/02/08 12:0 a.m.15 views

PrinterLogic Web Stack Cross-Site Scripting Vulnerability

PrinterLogic Web Stack PrinterLogic Printer Installer is a native Web application from PrinterLogic, Inc. It enables It departments to manage and automate the creation/propagation of PrinterObjects and printer drivers across print environments from a single management console. PrinterLogic Web...

6.1CVSS1.5AI score0.01153EPSS
Exploits1References1
NVD
NVD
added 2022/02/02 6:15 p.m.23 views

CVE-2021-42639

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...

6.1CVSS0.01153EPSS
Exploits1References7
Prion
Prion
added 2022/02/02 6:15 p.m.18 views

Cross site scripting

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...

4.3CVSS6.2AI score0.01153EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2022/02/02 5:16 p.m.31 views

CVE-2021-42639

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanitization...

6.4AI score0.01153EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/09/10 12:0 a.m.4 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

6.1CVSS6.1AI score0.00938EPSS
Exploits1References4
OSV
OSV
added 2020/09/25 2:15 p.m.5 views

CVE-2020-15374

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...

9.8CVSS7.3AI score0.01224EPSS
Exploits0References1
NVD
NVD
added 2020/09/25 2:15 p.m.15 views

CVE-2020-15374

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...

9.8CVSS0.01224EPSS
Exploits0References1
Prion
Prion
added 2020/09/25 2:15 p.m.12 views

Input validation

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...

7.5CVSS9.3AI score0.01224EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/25 1:11 p.m.21 views

CVE-2020-15374

Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input...

9.5AI score0.01224EPSS
Exploits0References1
Broadcom
Broadcom
added 2020/09/08 12:0 a.m.21 views

BSA-2020-1084

Security Advisory ID : BSA-2020-1084 Component : Rest API Revision : 2.0 Rest API in Brocade Fabric OS v8.2.1 through v8.2.1d, and 8.2.2 versions before v8.2.2c is vulnerable to multiple instances of reflected input. Note: Brocade Fabric OS versions before v8.2.1 are not affected. Rest API is...

9.8CVSS7.4AI score0.01224EPSS
Exploits0
OSV
OSV
added 2020/08/26 4:15 p.m.4 views

CVE-2020-13821

An issue was discovered in HiveMQ Broker Control Center 4.3.2. A crafted clientid parameter in an MQTT packet sent to the Broker is reflected in the client section of the management console. The attacker's JavaScript is loaded in a browser, which can lead to theft of the session and cookie of the...

5.4CVSS6.1AI score0.00532EPSS
Exploits0References2
OSV
OSV
added 2019/08/02 9:15 p.m.5 views

CVE-2019-6968

The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected...

6.1CVSS6.8AI score0.0258EPSS
Exploits3References1
Hacker One
Hacker One
added 2019/03/01 8:33 p.m.15 views

8x8: Cross-site Scripting (XSS) - Reflected

The password reset page of the managers portal of VCC reflected input of the tenant parameter without proper encoding considerations. Just wanted to disclose as it's my first ever report on h1...

1.5AI score
Exploits0
Rows per page
Query Builder