Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6665 matches found

Exploit DB
Exploit DBadded 2010/03/31 12:0 a.m.17 views

Piwik 0.5.5 - 'form_url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39144/info Piwik is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2010/03/31 12:0 a.m.11 views

Piwik 0.5.5 - form_url Cross-Site Scripting

Piwik 0.5.5 - formurl Cross-Site Scripting source: https://www.securityfocus.com/bid/39144/info Piwik is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser ...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/23 12:0 a.m.24 views

Astaro Security Linux 5 - index.fpl Cross-Site Scripting

Astaro Security Linux 5 - index.fpl Cross-Site Scripting source: https://www.securityfocus.com/bid/38893/info Astaro Security Linux is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/23 12:0 a.m.20 views

agXchange ESM - ucquerydetails.jsp Cross-Site Scripting

agXchange ESM - ucquerydetails.jsp Cross-Site Scripting source: https://www.securityfocus.com/bid/38896/info agXchange ESM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/19 12:0 a.m.12 views

vBulletin 4.0.2 - Search Cross-Site Scripting

vBulletin 4.0.2 - Search Cross-Site Scripting source: https://www.securityfocus.com/bid/38895/info vBulletin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2010/03/19 12:0 a.m.17 views

PHPWind 6.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/38867/info PHPWind is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2010/03/19 12:0 a.m.10 views

PHPWind 6.0 - Multiple Cross-Site Scripting Vulnerabilities

PHPWind 6.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/38867/info PHPWind is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execu...

7AI score
Exploits0
exploitpack
exploitpackadded 2010/03/15 12:0 a.m.10 views

(Multiple Products) - banner.swf Cross-Site Scripting

Multiple Products - banner.swf Cross-Site Scripting source: https://www.securityfocus.com/bid/38732/info Multiple products are prone to a cross-site scripting vulnerability because the applications fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Exploits0
exploitpack
exploitpackadded 2010/03/15 12:0 a.m.17 views

Dojo Toolkit 1.4.1 - dijittests_testCommon.js?theme Cross-Site Scripting

Dojo Toolkit 1.4.1 - dijitteststestCommon.js?theme Cross-Site Scripting source: https://www.securityfocus.com/bid/38739/info Dojo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execut...

6.8AI score
Exploits0
OpenVAS
OpenVASadded 2010/03/15 12:0 a.m.23 views

ViewVC 'lib/viewvc.py' Cross Site Scripting Vulnerability

ViewVC is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and steal cookie-based...

4.3CVSS6.5AI score0.00256EPSS
Exploits0References3
Exploit DB
Exploit DBadded 2010/03/15 12:0 a.m.94 views

Dojo Toolkit 1.4.1 - '/dijit/tests/_testCommon.js?theme' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38739/info Dojo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2010/03/15 12:0 a.m.13 views

(Multiple Products) - 'banner.swf' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38732/info Multiple products are prone to a cross-site scripting vulnerability because the applications fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2010/03/15 12:0 a.m.13 views

Dojo Toolkit 1.4.1 - dohrunner.html Multiple Cross-Site Scripting Vulnerabilities

Dojo Toolkit 1.4.1 - dohrunner.html Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/38739/info Dojo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues...

Exploits0
Exploit DB
Exploit DBadded 2010/03/15 12:0 a.m.17 views

Andromeda 1.9.2 - 's' Cross-Site Scripting / Session Fixation

source: https://www.securityfocus.com/bid/38735/info Andromeda is prone to a cross-site scripting vulnerability and a session-fixation vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site a...

7AI score
Exploits0
exploitpack
exploitpackadded 2010/03/13 12:0 a.m.17 views

Joomla! Component com_d-greinar - maintree Cross-Site Scripting

Joomla! Component comd-greinar - maintree Cross-Site Scripting source: https://www.securityfocus.com/bid/38714/info The Joomla! 'comd-greinar' component is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue ...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/12 12:0 a.m.12 views

pMyAdmin 3.3.5.1 - db_create.php Cross-Site Scripting

pMyAdmin 3.3.5.1 - dbcreate.php Cross-Site Scripting source: https://www.securityfocus.com/bid/38707/info phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code ...

6.8AI score
Exploits0
securityvulns
securityvulnsadded 2010/03/11 12:0 a.m.47 views

[xss] a xss on "threadid" parameter in BBSMAX

i found a xss on "threadid" parameter in "post.aspx" in BBSMAX , it's "post.aspx?action=reply&threadid=" Vulnerable: BBSMAX 4.2 BBSMAX 4.1 BBSMAX 3.0 For example: http://bbs.example.com/forum1/post.aspx?action=reply&threadid="scriptalert/liscker/;/script BBSMAX Home Page : http://www.bbsmax.com/...

1.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/10 12:0 a.m.17 views

Max Network Technology BBSMAX 4.2 - threadid Cross-Site Scripting

Max Network Technology BBSMAX 4.2 - threadid Cross-Site Scripting source: https://www.securityfocus.com/bid/38630/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

6.8AI score
Exploits0
exploitpack
exploitpackadded 2010/03/10 12:0 a.m.12 views

DDL CMS 2.1 - blacklist.php Cross-Site Scripting

DDL CMS 2.1 - blacklist.php Cross-Site Scripting source: https://www.securityfocus.com/bid/38643/info DDL CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2010/03/10 12:0 a.m.18 views

60cycleCMS - 'select.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser,...

7.4AI score
Exploits0
Rows per page
Query Builder