CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

502 matches found

NVD•added 2003/08/07 4:0 a.m.•10 views

CVE-2003-0483

Cross-site scripting XSS vulnerabilities in XMB Forum 1.8 Partagium allow remote attackers to insert arbitrary script via 1 the member parameter to member.php or 2 the action parameter to buddy.php...

6.8CVSS6.3AI score0.00485EPSS

Exploits0References2

NVD•added 2003/08/07 4:0 a.m.•15 views

CVE-2003-0488

Multiple cross-site scripting XSS vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via 1 the addname parameter in the addacl module, or 2 the alias parameter in the domap module...

5.1CVSS5.9AI score0.00849EPSS

Exploits1References5

NVD•added 2003/08/07 4:0 a.m.•11 views

CVE-2003-0481

Multiple cross-site scripting XSS vulnerabilities in TUTOS 1.1 allow remote attackers to insert arbitrary web script, as demonstrated using the msg parameter to fileselect.php...

4.3CVSS6AI score0.00399EPSS

Exploits0References1

NVD•added 2003/07/24 4:0 a.m.•21 views

CVE-2003-0446

Cross-site scripting XSS in Internet Explorer 5.5 and 6.0, possibly in a component that is also used by other Microsoft products, allows remote attackers to insert arbitrary web script via an XML file that contains a parse error, which inserts the script in the resulting error message...

4.3CVSS6.1AI score0.42332EPSS

Exploits1References10

NVD•added 2003/07/24 4:0 a.m.•21 views

CVE-2003-0442

Cross-site scripting XSS vulnerability in the transparent SID support capability for PHP before 4.3.2 session.usetranssid allows remote attackers to insert arbitrary script via the PHPSESSID parameter...

4.3CVSS5.9AI score0.51581EPSS

Exploits1References14

CVE•added 2003/06/28 4:0 a.m.•53 views

CVE-2003-0483

The CVE-2003-0483 entry concerns XMB Forum 1.8 Partagium, where the member.php and buddy.php scripts are vulnerable to cross-site scripting (XSS). The underlying issue is that user-controlled inputs to the member parameter and the action parameter can be used to inject arbitrary script, enabling ...

6.8CVSS6.3AI score0.00485EPSS

Exploits0References2Affected Software1

Cvelist•added 2003/06/28 4:0 a.m.•11 views

CVE-2003-0495

Cross-site scripting XSS vulnerability in LedNews 0.7 allows remote attackers to insert arbitrary web script via a news item...

5.8AI score0.00571EPSS

Exploits0References3

Cvelist•added 2003/06/28 4:0 a.m.•22 views

CVE-2003-0484

Cross-site scripting XSS vulnerability in viewtopic.php for phpBB allows remote attackers to insert arbitrary web script via the topicid parameter...

5.9AI score0.00867EPSS

Exploits0References1

Cvelist•added 2003/06/28 4:0 a.m.•12 views

CVE-2003-0483

6.3AI score0.00485EPSS

Exploits0References2

Cvelist•added 2003/06/28 4:0 a.m.•19 views

CVE-2003-0481

Multiple cross-site scripting XSS vulnerabilities in TUTOS 1.1 allow remote attackers to insert arbitrary web script, as demonstrated using the msg parameter to fileselect.php...

6AI score0.00399EPSS

Exploits0References1

NVD•added 2003/06/16 4:0 a.m.•12 views

CVE-2003-0310

Cross-site scripting XSS vulnerability in articleview.php for eZ publish 2.2 allows remote attackers to insert arbitrary web script...

6.8CVSS5.9AI score0.00367EPSS

Exploits0References1

Cvelist•added 2003/06/11 4:0 a.m.•12 views

CVE-2003-0416

Cross-site scripting XSS vulnerability in index.cgi for Bandmin 1.4 allows remote attackers to insert arbitrary HTML or script via 1 the year parameter in a showmonth action, 2 the month parameter in a showmonth action, or 3 the host parameter in a showhost action...

5.8AI score0.00519EPSS

Exploits1References3

CVE•added 2003/06/11 4:0 a.m.•46 views

CVE-2003-0404

CVE-2003-0404 affects Vignette StoryServer 4/5 and Vignette V/5 and V/6. Vulnerability: multiple Cross Site Scripting (XSS) via text variables, demonstrated through the errInfo parameter in the default login template. Impact: remote attackers can inject arbitrary HTML and script. Exploitation det...

4.3CVSS6.4AI score0.00791EPSS

Exploits1References4Affected Software3

NVD•added 2003/06/09 4:0 a.m.•17 views

CVE-2003-0318

Cross-site scripting XSS vulnerability in the Statistics module for PHP-Nuke 6.0 and earlier allows remote attackers to insert arbitrary web script via the year parameter...

4.3CVSS5.8AI score0.00015EPSS

Exploits0References1

NVD•added 2003/05/21 4:0 a.m.•11 views

CVE-2003-0341

Cross-site scripting XSS vulnerability in Owl Intranet Engine 0.71 and earlier allows remote attackers to insert arbitrary script via the Search field...

6.8CVSS5.9AI score0.00734EPSS

Exploits0References1

Cvelist•added 2003/05/14 4:0 a.m.•13 views

CVE-2003-0278

Cross-site scripting XSS vulnerability in normalhtml.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to insert arbitrary web script via the file parameter...

5.8AI score0.00571EPSS

Exploits0References3

NVD•added 2003/02/07 5:0 a.m.•21 views

CVE-2003-0044

Multiple cross-site scripting XSS vulnerabilities in the 1 examples and 2 ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML...

6.8CVSS5.8AI score0.27285EPSS

Exploits0References10

NVD•added 2002/12/18 5:0 a.m.•12 views

CVE-2002-1341

Cross-site scripting XSS vulnerability in readbody.php for SquirrelMail 1.2.10, 1.2.9, and earlier allows remote attackers to insert script and HTML via the 1 mailbox and 2 passedid parameters...

6.8CVSS5.6AI score0.02702EPSS

Exploits0References9

Cvelist•added 2002/12/11 5:0 a.m.•13 views

CVE-2002-1341

Cross-site scripting XSS vulnerability in readbody.php for SquirrelMail 1.2.10, 1.2.9, and earlier allows remote attackers to insert script and HTML via the 1 mailbox and 2 passedid parameters...

5.5AI score0.02702EPSS

Exploits0References9

Debian CVE•added 2002/12/03 5:0 a.m.•15 views

CVE-2002-1335

Cross-site scripting XSS vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies...

4.3CVSS3.7AI score0.01398EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by