Mozilla Firefox < 2.0.0.19

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 2.0.0.19. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2008-68 advisory. - Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19,...

CVE-2025-65233

Reflected cross-site scripting XSS in SLiMS slims9bulian before 9.6.0 via improper handling of $SERVER'PHPSELF' in index.php/sysconfig.inc.php, which allows remote attackers to execute arbitrary JavaScript in a victim's browser by supplying a crafted URL path...

CVE-2025-34399

MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS vulnerability in the AddressesCc parameter of /Mondo/lang/sys/Forms/AddressBook.aspx. The AddressesCc value is not properly sanitized when processed via a GET request and is reflected within a block in the JavaScript...

PT-2025-50141

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 contain a reflected cross-site scripting XSS issue in the FieldCc parameter of the ''/Mondo/lang/sys/Forms/AddressBook.aspx'' endpoint. The FieldCc value is not...

CVE-2025-64130

Zenitel TCIV-3+ is vulnerable to a reflected cross-site scripting vulnerability, which could allow a remote attacker to execute arbitrary JavaScript on the victim's browser...

CVE-2025-64130 Zenitel TCIV-3+ Cross-site Scripting

Zenitel TCIV-3+ is vulnerable to a reflected cross-site scripting vulnerability, which could allow a remote attacker to execute arbitrary JavaScript on the victim's browser...

Zenitel TCIV-3+ 跨站脚本漏洞

Zenitel TCIV-3+ is an IP intercom terminal from Zenitel Norway. The Zenitel TCIV-3+ suffers from a cross-site scripting vulnerability that stems from reflective cross-site scripting, which could lead to a remote attacker executing arbitrary JavaScript in the victim's browser...

Otsuka Firewall Management Service 跨站脚本漏洞

Otsuka Firewall Management Service is a firewall software from Otsuka Japan. A cross-site scripting vulnerability exists in Otsuka Firewall Management Service, which stems from a reflected cross-site scripting vulnerability that could lead to a remote attacker executing arbitrary JavaScript code...

EUVD-2025-38063

An unauthenticated reflected cross-site scripting vulnerability in the query handling of CMSimpleXH allows remote attackers to inject and execute arbitrary JavaScript in a victim's browser via a crafted request e.g., a maliciously crafted POST login. Successful exploitation may lead to theft of...

CVE-2025-12460

Summary: CVE-2025-12460 describes a Stored XSS vulnerability in Afterlogic Aurora webmail. Affected versions: 9.8.3 and earlier. ** vulnerability mechanism:** an attacker can embed JavaScript in an HTML email via an img tag, which may execute in the recipient’s webmail browser context. Impact (pe...

EUVD-2006-6959

Malware in sbrugna...

EUVD-2017-18355

Malware in sbrugna...

EUVD-2014-1947

Malware in sbrugna...

EUVD-2006-0396

Malware in sbrugna...

EUVD-2009-1833

Malware in sbrugna...

EUVD-2020-17384

Malware in sbrugna...

CVE-2025-61198

CVE-2025-61198 is a stored XSS in Orban Optimod devices (5950/5950HD/5750/5750HD/Trio) affecting Optimod 1.0.0.33 and System 2.5.26. The vulnerability arises from injecting a malicious payload into logs that are rendered in the UI, allowing an attacker to execute arbitrary JavaScript in a user’s ...

EUVD-2024-55005

Malicious code in bioql PyPI...

EUVD-2021-28579

Malicious code in bioql PyPI...

EUVD-2023-45173

Malicious code in bioql PyPI...