Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6714 matches found

Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.2 views

Hyper NIKKI System cross-site scripting vulnerability

Overview Hyper NIKKI System hns, web log software from the Hyper NIKKI System Project, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session...

4.3CVSS6.2AI score0.01262EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

TikiWiki cross-site scripting vulnerability

Overview TikiWiki, one of Wiki clones, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution None...

2.6CVSS6.3AI score
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.2 views

Joomla! cross-site scripting vulnerability

Overview Joomla!, an open source content management system, contains a cross-site scripting vulnerability. This vulnerability is different from JVN79484135. Impact An arbitrary script may be executed on the user's web browser. If session information in a cookie is leaked, an attacker could possib...

7.5CVSS5.9AI score0.01263EPSS
Exploits0References13
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

Shobo Shobo Nikki System (sns) cross-site scripting vulnerability

Overview Shobo Shobo Nikki System sns, weblog scripts provided by Project Amateras, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Also, the administrator's password could be disclosed if cookie information is leaked. Solution...

6.8CVSS6.2AI score0.01182EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

Trac cross-site scripting vulnerability

Overview Trac is a project management tool from Edgewall Software. InterAct Corp. provides a localized version of Trac in Japan. Trac wiki engine contains a cross-site scripting vulnerability. Impact A remote attacker could possibly execute an arbitrary script on the user's web browser. Solution...

4.3CVSS6.3AI score0.01369EPSS
Exploits0References10
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

Phorum cross-site scripting vulnerability

Overview Phorum, an open source message board system, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution None...

4.3CVSS6.3AI score
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

ATutor cross-site scripting vulnerability

Overview ATutor, an open source e-learning content management system, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Authentication information could be stolen as a result. Solution None...

4.3CVSS6.1AI score
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.3 views

ServerView cross-site scripting vulnerability

Overview ServerView, server-monitoring software included with Fujitsu servers, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution None...

4.3CVSS6.3AI score0.01275EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

CGI RESCUE WebFORM vulnerable to HTTP header injection

Overview WebFORM released from CGI RESCUE is software that allows the emailing of contents of a HTML form. WebFORM contains a HTTP header injection vulnerability which is caused by improperly processing the output of HTTP headers. Impact Falsified information may be displayed or an arbitrary scri...

4.3CVSS7AI score
Exploits0References4
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.2 views

Trac cross-site scripting vulnerability

Overview Trac is a project management tool from Edgewall Software. InterAct Corp. provides a localized version of Trac in Japan. Trac wiki engine contains a cross-site scripting vulnerability which affects Microsoft Internet Explorer. Impact A remote attacker could possibly execute an arbitrary...

4.3CVSS6.2AI score0.01089EPSS
Exploits0References10
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

MailDwarf cross-site scripting vulnerability

Overview MailDwarf is a mail form CGI provided by HTML Dwarf. MailDwarf contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution...

6.8CVSS6.1AI score0.01182EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

open-gorotto cross-site scripting vulnerability

Overview open-gorotto, open source software to create members-only community sites, contains a cross-site scripting vulnerability, as it does not properly handle output of usernames. Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is...

4.3CVSS6.1AI score0.01707EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

Meneame cross-site scripting vulnerability

Overview Meneame, an open source social bookmark system, contains a cross-site scripting vulnerability. Meneame, an open-source web application to build social bookmark systems, contains a cross-site scripting vulnerability, as it does not properly handle output data. Impact A remote attacker cou...

4.3CVSS6.4AI score0.01263EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.5 views

Apache Tomcat sample web application cross-site scripting vulnerability

Overview Apache Tomcat, from the Apache Software Foundation, contains a cross-site scripting vulnerability in its sample program. Apache Tomcat from the Apache Software Foundation is an implementation of the Java Servlet and JavaServer Page JSP technologies. jsp-examples, a sample web application...

4.3CVSS4.6AI score0.77376EPSS
Exploits1References15
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.2 views

NetCommons cross-site scripting vulnerability

Overview NetCommons from the NetCommons Project contains a cross-site scripting vulnerability. NetCommons from the NetCommons Project is an open source content management system which provides e-learning and groupware functions. NetCommons contains a cross-site scripting vulnerability. This...

4.3CVSS6.3AI score0.01223EPSS
Exploits0References9
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.1 views

Cross-site scripting vulnerability in updir.php in UPDIR.NET

Overview updir.php in UPDIR.NET contains a cross-site scripting vulnerability in the full-text search and file upload functions. updir.php from UPDIR.NET is software for publishing and managing image files, etc. on web servers. By installing updir.php on a web server, users are able to upload ima...

4.3CVSS6.4AI score0.01223EPSS
Exploits0References8
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2008/05/20 3:0 p.m.2 views

Multiple Cybozu products vulnerable to HTTP header injection

Overview Multiple Cybozu products are vulnerable to HTTP header injection. Multiple Cybozu products are vulnerable to HTTP header injection because they do not properly process HTTP headers. Impact A remote attacker can conduct cache poisoning, send an arbitrary cookie, or execute an arbitrary...

4.3CVSS7.7AI score
Exploits0References2
Exploit DB
Exploit DBadded 2008/05/05 12:0 a.m.22 views

osCommerce 2.1/2.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/29055/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2008/05/02 12:0 a.m.24 views

Chicomas 2.0.4 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29025/info ChiCoMaS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2008/05/01 12:0 a.m.38 views

CoronaMatrix phpAddressBook 2.0 - 'username' Cross-Site Scripting Vulnerability

CoronaMatrix phpAddressBook 2.0 'username' Cross Site Scripting Vulnerability. CVE-2008-6646. Webapps exploit for php platform source: http://www.securityfocus.com/bid/29005/info phpAddressBook is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied...

4.3CVSS0.2AI score0.01062EPSS
Exploits2
Rows per page
Query Builder