CVE-2025-10330

A flaw has been found in cdevroe unmark up to 1.9.3. This vulnerability affects unknown code of the file application/views/layouts/topbar/searchform.php. This manipulation of the argument q causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been published...

leischner.familytreeguide.com XSS vulnerability

Open Bug Bounty ID: OBB-548606 Description| Value ---|--- Affected Website:| leischner.familytreeguide.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2009-4320

Cross-site scripting XSS vulnerability in searchform.php in The Next Generation of Genealogy Sitebuilding TNG 7.1.2 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

CVE-2007-3239

The CVE-2007-3239 entry describes an XSS vulnerability in the AndyBlue WordPress theme (pre-20070607) via the PHP_SELF value in searchform.php used by index.php. The underlying issue is reflected/script injection in the search form, which could be leveraged to execute arbitrary script or HTML in ...

WordPress AndyBlue Theme - XSS

Because of this vulnerability in searchform.php, the attackers can inject arbitrary web script or HTML. Solution Update the theme...