Lucene search
K

11 matches found

NVD
NVD
added 2026/06/26 2:16 a.m.7 views

CVE-2026-50740

A missing sanitisation vulnerability of user input in the zone-include.php script exists in Revive Adserver 6.0.7 and earlier. A low‑privileged user could exploit the refresh parameter of the iFrame invocation tag to perform reflected XSS attacks...

6.1CVSS0.00222EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/26 1:11 a.m.9 views

EUVD-2026-39604

A missing sanitisation vulnerability of user input in the zone-include.php script exists in Revive Adserver 6.0.7 and earlier. A low‑privileged user could exploit the refresh parameter of the iFrame invocation tag to perform reflected XSS attacks...

6.1CVSS6.3AI score0.00222EPSS
Exploits1References1
OSV
OSV
added 2026/06/26 1:11 a.m.2 views

CVE-2026-50740

A missing sanitisation vulnerability of user input in the zone-include.php script exists in Revive Adserver 6.0.7 and earlier. A low‑privileged user could exploit the refresh parameter of the iFrame invocation tag to perform reflected XSS attacks...

6.1CVSS6.4AI score0.00222EPSS
Exploits1References3
Hacker One
Hacker One
added 2026/06/03 10:27 p.m.7 views

Revive Adserver: Reflected XSS via unsanitised refresh parameter in zone invocation tag

A missing sanitization of user input in the zone-include.php script of Revive Adserver 6.0.7 and earlier was reported. This vulnerability allowed a low-privileged user to perform reflected XSS attacks by exploiting the refresh parameter of the iFrame invocation tag...

6.1CVSS5.8AI score0.00222EPSS
Exploits1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2005-0792

Malware in sbrugna...

4.3CVSS6.4AI score0.04033EPSS
Exploits0References8
OSV
OSV
added 2017/10/26 1:29 p.m.2 views

CVE-2017-7335

A Cross-Site Scripting XSS vulnerability in Fortinet FortiWLC 6.1-x 6.1-2, 6.1-4 and 6.1-5; 7.0-x 7.0-7, 7.0-8, 7.0-9, 7.0-10; and 8.x 8.0, 8.1, 8.2 and 8.3.0-8.3.2 allows an authenticated user to inject arbitrary web script or HTML via non-sanitized parameters "refresh" and "branchtotable" prese...

5.4CVSS5.9AI score0.00538EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/07/09 5:51 p.m.6 views

activemq: Multiple XSS flaws in web demos

Multiple cross-site scripting XSS vulnerabilities in the web demos in Apache ActiveMQ before 5.8.0 allow remote attackers to inject arbitrary web script or HTML via 1 the refresh parameter to PortfolioPublishServlet.java aka demo/portfolioPublish or Market Data Publisher, or vectors involving 2...

4.3CVSS6.9AI score0.06018EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2013/07/09 5:51 p.m.12 views

ActiveMQ: XSS vulnerability in portfolioPublish demo application

Cross-site scripting XSS vulnerability in the Portfolio publisher servlet in the demo web application in Apache ActiveMQ before 5.9.0 allows remote attackers to inject arbitrary web script or HTML via the refresh parameter to demo/portfolioPublish, a different vulnerability than CVE-2012-6092...

4.3CVSS7AI score0.05895EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2013/04/21 12:0 a.m.5 views

PT-2013-1884 · Apache · Apache Activemq

Name of the Vulnerable Software and Affected Versions: Apache ActiveMQ versions prior to 5.8.0 Description: The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting XSS attacks. This can be achieved through various vectors, including th...

4.3CVSS7AI score0.06018EPSS
Exploits1References10
Cvelist
Cvelist
added 2005/03/20 5:0 a.m.16 views

CVE-2005-0791

Cross-site scripting XSS vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when registerglobals is enabled, allows remote attackers to inject arbitrary web script or HTML via the refresh parameter...

5.7AI score0.04033EPSS
Exploits0References7
NVD
NVD
added 2005/03/14 5:0 a.m.13 views

CVE-2005-0791

Cross-site scripting XSS vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when registerglobals is enabled, allows remote attackers to inject arbitrary web script or HTML via the refresh parameter...

4.3CVSS5.7AI score0.04033EPSS
Exploits0References7
Rows per page
Query Builder