Lucene search
K

39 matches found

Vulnrichment
Vulnrichment
added 2024/06/13 12:32 p.m.19 views

CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS...

6.1CVSS6.8AI score0.00254EPSS
Exploits0References1
NVD
NVD
added 2024/06/04 12:15 p.m.19 views

CVE-2023-49852

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Vsourz Digital Responsive Slick Slider WordPress allows Code Injection.This issue affects Responsive Slick Slider WordPress: from n/a through 1.4...

6.5CVSS6.5AI score0.00359EPSS
Exploits0References1
NVD
NVD
added 2024/06/04 10:15 a.m.12 views

CVE-2023-47663

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

4.8AI score0.00183EPSS
Exploits0
NVD
NVD
added 2024/05/17 9:15 a.m.22 views

CVE-2024-32790

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Supsystic Pricing Table by Supsystic allows Code Injection.This issue affects Pricing Table by Supsystic: from n/a through 1.9.12...

4.3CVSS4.7AI score0.00346EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 8:45 a.m.77 views

CVE-2024-4214

CVE-2024-4214 is a Basic XSS vulnerability in the WordPress Cardealer plugin (Car Dealer). The connected documents indicate an improper neutralization of script-related HTML tags in a Car Dealer web page, affecting the plugin versions up to 4.15. The sources do not provide concrete attack vectors...

2.7CVSS6AI score0.00373EPSS
Exploits0References1
Prion
Prion
added 2023/09/15 9:15 a.m.16 views

Design/Logic Flaw

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in Saphira Saphira Connect allows Reflected XSS.This issue affects Saphira Connect: before 9...

5.8CVSS6.2AI score0.00784EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/08/03 12:0 a.m.17 views

Siemens SCALANCE X-200RNA Switch Devices Improper Neutralization of Script-Related HTML Tags in a Web Page (CVE-2022-46350)

A vulnerability has been identified in SCALANCE X204RNA HSR All versions V3.2.7, SCALANCE X204RNA PRP All versions V3.2.7, SCALANCE X204RNA EEC HSR All versions V3.2.7, SCALANCE X204RNA EEC PRP All versions V3.2.7, SCALANCE X204RNA EEC PRP/HSR All versions V3.2.7. The integrated web server could...

6.1CVSS6.9AI score0.00446EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/04/15 3:27 p.m.26 views

CVE-2023-29205 org.xwiki.platform:xwiki-platform-rendering-xwiki vulnerable to stored cross-site scripting via HTML and raw macro

XWiki Commons are technical libraries common to several other top level XWiki projects. The HTML macro does not systematically perform a proper neutralization of script-related html tags. As a result, any user able to use the html macro in XWiki, is able to introduce an XSS attack. This can be...

9.9CVSS9.3AI score0.00588EPSS
Exploits1References2
OSV
OSV
added 2023/04/15 3:27 p.m.23 views

CVE-2023-29205 org.xwiki.platform:xwiki-platform-rendering-xwiki vulnerable to stored cross-site scripting via HTML and raw macro

XWiki Commons are technical libraries common to several other top level XWiki projects. The HTML macro does not systematically perform a proper neutralization of script-related html tags. As a result, any user able to use the html macro in XWiki, is able to introduce an XSS attack. This can be...

9.9CVSS5.2AI score0.00588EPSS
Exploits1References4
NVD
NVD
added 2022/08/02 4:15 p.m.17 views

CVE-2022-1293

The embedded neutralization of Script-Related HTML Tag, was by-passed in the case of some extra conditions...

6.1CVSS0.00408EPSS
Exploits0References1
CVE
CVE
added 2022/08/02 3:24 p.m.59 views

CVE-2022-1293

CVE-2022-1293 is an XSS vulnerability in Citadel client versions 7.1.1 and earlier. It stems from bypassing the embedded neutralization of a Script-Related HTML Tag and can be bypassed under additional conditions. No exploit details are provided in the connected documents.

6.1CVSS5.9AI score0.00408EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/02 3:24 p.m.18 views

CVE-2022-1293 XSS vulnerability in Citadel

The embedded neutralization of Script-Related HTML Tag, was by-passed in the case of some extra conditions...

5.7CVSS6.4AI score0.00408EPSS
Exploits0References1
ICS
ICS
added 2019/12/10 12:0 a.m.66 views

Siemens XHQ Operations Intelligence

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: XHQ Operations Intelligence Vulnerabilities: Cross-site Request Forgery, Improper Neutralization of Script-Related HTML Tags in a Web Page, Improper Input Validation 2. RISK...

9.1CVSS7.8AI score0.01042EPSS
Exploits0References9
NVD
NVD
added 2019/05/28 7:29 p.m.19 views

CVE-2018-13375

An Improper Neutralization of Script-Related HTML Tags in Fortinet FortiAnalyzer 5.6.0 and below and FortiManager 5.6.0 and below allows an attacker to send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed while viewing the logs in...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1
CVE
CVE
added 2019/05/28 6:33 p.m.111 views

CVE-2018-13375

CVE-2018-13375 is an XSS-style vulnerability in Fortinet products where FortiAnalyzer 5.6.0 and earlier and FortiManager 5.6.0 and earlier fail to properly neutralize script-related HTML tags in the DHCP HOSTNAME parameter. An attacker can inject malicious scripts via a DHCP request, and the scri...

6.1CVSS6.2AI score0.00647EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2018/04/05 1:0 p.m.47 views

CVE-2018-1000154

Zammad (version 2.3.0 and earlier) contains an Improper Neutralization of Script-Related HTML Tags in email subjects (CWE-80) that can lead to embedding/execution of JavaScript in a user’s browser, exploitable when a ticket is opened. Affected: Zammad

6.1CVSS6.4AI score0.01598EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2014/03/24 12:0 a.m.77 views

Open-Xchange Security Advisory 2014-02-10

Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 30820 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: 7.4.1 and earlier Vulnerable component: backend Fixed version: 7.2.2-rev31, 7.4.0-rev27,...

4.3CVSS0.1AI score0.01161EPSS
Exploits0
securityvulns
securityvulns
added 2014/01/08 12:0 a.m.69 views

Open-Xchange Security Advisory 2014-01-06

Open-Xchange Security Advisory 2014-01-06 Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 30203 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: 7.4.0 and earlier Vulnerable component: backend Fixe...

4.3CVSS0.1AI score0.01325EPSS
Exploits0
securityvulns
securityvulns
added 2013/10/01 12:0 a.m.54 views

Open-Xchange Security Advisory 2013-09-30

Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 28642 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: prior to 7.2.2 Vulnerable component: backend Fixed version: 7.0.2-rev16, 7.2.2-rev20 Report...

3.5CVSS0.1AI score0.00767EPSS
Exploits0
Rows per page
Query Builder