CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4574 matches found

NVD•added 2005/01/17 5:0 a.m.•17 views

CVE-2005-0221

Cross-site scripting XSS vulnerability in login.php in Gallery 2.0 Alpha allows remote attackers to inject arbitrary web script or HTML via the g2formsubject field...

4.3CVSS5.6AI score0.00871EPSS

Exploits1References6

NVD•added 2005/01/17 5:0 a.m.•18 views

CVE-2005-0291

Cross-site scripting XSS vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a blocked URL phrase...

4.3CVSS5.8AI score0.00605EPSS

Exploits0References8

NVD•added 2005/01/10 5:0 a.m.•15 views

CVE-2004-1100

Cross-site scripting XSS vulnerability in mailpost.exe in MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to execute arbitrary web script or HTML via the append parameter...

6.8CVSS6.2AI score0.01467EPSS

Exploits1References4

NVD•added 2005/01/10 5:0 a.m.•15 views

CVE-2004-1210

Cross-site scripting XSS vulnerability in proxylog.dat in IPCop 1.4.1 and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the 1 url or 2 part variables...

6.8CVSS5.8AI score0.04426EPSS

Exploits1References4

NVD•added 2005/01/10 5:0 a.m.•10 views

CVE-2004-1196

Cross-site scripting XSS vulnerability in inmail.pl in Insite Inmail allows remote attackers to inject arbitrary web script or HTML via the acao parameter...

6.8CVSS5.7AI score0.04734EPSS

Exploits1References4

NVD•added 2005/01/10 5:0 a.m.•21 views

CVE-2004-1177

Cross-site scripting XSS vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the resulting error page...

4.3CVSS5.3AI score0.01585EPSS

Exploits0References9

NVD•added 2005/01/10 5:0 a.m.•14 views

CVE-2004-1213

Cross-site scripting XSS vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter...

6.8CVSS5.8AI score0.00726EPSS

Exploits1References4

NVD•added 2004/12/31 5:0 a.m.•10 views

CVE-2004-1397

Cross-site scripting XSS vulnerability in UseModWiki 1.0 allows remote attackers to inject arbitrary web script or HTML via an argument to wiki.pl...

4.3CVSS5.7AI score0.00409EPSS

Exploits1References4

NVD•added 2004/12/31 5:0 a.m.•15 views

CVE-2004-1506

Multiple cross-site scripting XSS vulnerabilities in WebCalendar allow remote attackers to inject arbitrary web script via 1 viewentry.php, 2 viewd.php, 3 usersel.php, 4 datesel.php, 5 trailer.php, or 6 styles.php, as demonstrated using img srg tags...

4.3CVSS5.9AI score0.00409EPSS

Exploits1References4

NVD•added 2004/12/31 5:0 a.m.•14 views

CVE-2004-1789

Cross-site scripting XSS vulnerability in the web management interface in ZyWALL 10 4.07 allows remote attackers to inject arbitrary web script or HTML via the rpAuth1 page...

4.3CVSS5.7AI score0.01514EPSS

Exploits1References7

NVD•added 2004/12/31 5:0 a.m.•14 views

CVE-2004-1837

Cross-site scripting XSS vulnerability in Modsurvey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey fields or error messages for malformed query strings...

4.3CVSS5.8AI score0.00346EPSS

Exploits0References4

NVD•added 2004/12/31 5:0 a.m.•14 views

CVE-2004-2510

Cross-site scripting XSS vulnerability in showflat.php in Infopop UBB.Threads before 6.5 allows remote attackers to inject arbitrary web script or HTML via the Cat parameter...

4.3CVSS5.8AI score0.01604EPSS

Exploits1References6

OSV•added 2004/12/31 5:0 a.m.•6 views

CVE-2004-2152

Cross-site scripting XSS vulnerability in 'raw' page output mode for MediaWiki 1.3.4 and earlier allows remote attackers to inject arbitrary web script or HTML...

6AI score

Exploits0References7

NVD•added 2004/12/31 5:0 a.m.•11 views

CVE-2004-2128

Cross-site scripting XSS vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as other users via the query string to ISAPISkeleton.dll...

6.8CVSS6.3AI score0.007EPSS

Exploits1References7

NVD•added 2004/12/31 5:0 a.m.•17 views

CVE-2004-1551

Cross-site scripting XSS vulnerability in the 1 email or 2 file modules in paFileDB 3.1 Final allows remote attackers to execute arbitrary web script or HTML via the id parameter...

4.3CVSS5.9AI score0.00547EPSS

Exploits0References2

NVD•added 2004/12/31 5:0 a.m.•19 views

CVE-2004-1467

Multiple cross-site scripting XSS vulnerabilities in eGroupWare 1.0.00.003 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 date or search text field in the calendar module, 2 Field parameter, Filter parameter, QField parameter, Start parameter or Search field in th...

4.3CVSS5.7AI score0.05067EPSS

Exploits1References5

NVD•added 2004/12/31 5:0 a.m.•10 views

CVE-2004-2514

Cross-site scripting XSS vulnerability in modules/privatemessages/index.php in PowerPortal 1.x allows remote attackers to inject arbitrary web script or HTML via the 1 SUBJECT or 2 MESSAGE field...

4.3CVSS5.7AI score0.00674EPSS

Exploits1References6

NVD•added 2004/12/31 5:0 a.m.•11 views

CVE-2004-2564

Multiple cross-site scripting XSS vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote attackers to inject arbitrary web script or HTML via 1 the show parameter in show.asp and 2 the title parameter in showperf.asp...

4.3CVSS5.9AI score0.01204EPSS

Exploits1References7

NVD•added 2004/12/31 5:0 a.m.•16 views

CVE-2004-2738

Cross-site scripting XSS vulnerability in checkuserid.php in ZeroBoard 4.1pl4 and earlier allows remote attackers to inject arbitrary web script or HTML via the userid parameter...

4.3CVSS5.7AI score0.00537EPSS

Exploits0References7

NVD•added 2004/12/31 5:0 a.m.•10 views

CVE-2004-1790

Cross-site scripting XSS vulnerability in the web management interface in Edimax AR-6004 ADSL Routers allows remote attackers to inject arbitrary web script or HTML via the URL...

4.3CVSS5.7AI score0.00913EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by