CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

VulnCheck KEV•added 2024/11/07 12:0 a.m.•0 views

VulnCheck KEV: CVE-2014-2120

Cisco Adaptive Security Appliance ASA contains a cross-site scripting XSS vulnerability in the WebVPN login page. This vulnerability allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

6.1CVSS7.3AI score0.75145EPSS

Exploits0References1

OSV•added 2022/05/13 1:30 a.m.•16 views

GHSA-7W89-QQXX-C62R Cross-site Scripting in Jenkins Build Failure Analyzer plugin

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

6.1CVSS6.1AI score0.00089EPSS

Exploits0References3

VulnCheck KEV•added 2021/11/03 12:0 a.m.•1 views

VulnCheck KEV: CVE-2016-4437

Apache Shiro contains a vulnerability which may allow remote attackers to execute code or bypass intended access restrictions via an unspecified request parameter when a cipher key has not been configured for the "remember me" feature...

9.8CVSS7.3AI score0.94251EPSS

Exploits9References1

OSV•added 2017/02/09 3:59 p.m.•12 views

CVE-2016-4988

Cross-site scripting XSS vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

6.1CVSS5.9AI score

Exploits0References2

OSV•added 2016/10/03 9:59 p.m.•0 views

CVE-2016-8277

Huawei USG9520, USG9560, and USG9580 unified security gateways with software before V300R001C01SPCa00 allow remote authenticated users to cause a denial of service device restart via an unspecified command parameter...

6.5CVSS5.8AI score

Exploits0References2

Cvelist•added 2015/07/29 1:0 a.m.•15 views

CVE-2015-0732

Cross-site scripting XSS vulnerability in Cisco AsyncOS on the Web Security Appliance WSA 9.0.0-193; Email Security Appliance ESA 8.5.6-113, 9.1.0-032, 9.1.1-000, and 9.6.0-000; and Content Security Management Appliance SMA 9.1.0-033 allows remote attackers to inject arbitrary web script or HTML...

5.8AI score0.00296EPSS

Exploits0References3

Prion•added 2015/02/02 1:59 a.m.•14 views

Open redirect

Open redirect vulnerability in EMC Unisphere Central before 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...

5.8CVSS7.2AI score0.00253EPSS

Exploits0References3Affected Software1

Cvelist•added 2015/02/02 1:0 a.m.•10 views

CVE-2015-0512

Open redirect vulnerability in EMC Unisphere Central before 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...

6.7AI score0.00253EPSS

Exploits0References3

CVE•added 2014/08/22 2:0 p.m.•40 views

CVE-2014-5122

CVE-2014-5122 is an Open Redirect vulnerability in ESRI ArcGIS for Server 10.1.1. A crafted login URL can redirect the user’s browser to an attacker-controlled site via an unspecified parameter, enabling phishing-like redirections. The vulnerability is documented in the ArcGIS for Server disclosu...

5.8CVSS7AI score0.00317EPSS

Exploits0References4Affected Software1

NVD•added 2014/02/28 6:18 a.m.•9 views

CVE-2014-0874

Cross-site scripting XSS vulnerability in IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter...

3.5CVSS5.2AI score0.00186EPSS

Exploits1References5

Prion•added 2014/02/28 6:18 a.m.•9 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter...

3.5CVSS5.5AI score0.00186EPSS

Exploits1References5Affected Software1

Cvelist•added 2014/02/28 2:0 a.m.•13 views

CVE-2014-0874

Cross-site scripting XSS vulnerability in IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter...

5.2AI score0.00186EPSS

Exploits1References5

Prion•added 2014/02/22 9:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the server in IBM Cognos Business Intelligence BI 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

4.3CVSS6AI score0.00236EPSS

Exploits0References2Affected Software1

Cvelist•added 2014/02/22 9:0 p.m.•14 views

CVE-2014-0861

5.6AI score0.00166EPSS

Exploits0References1

Prion•added 2014/01/10 4:47 p.m.•13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the web framework in Cisco Secure Access Control System ACS allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCum03625...

4.3CVSS6.1AI score0.00561EPSS

Exploits0References7

CVE•added 2013/12/23 11:0 p.m.•62 views

CVE-2013-7075

CVE-2013-7075 affects TYPO3 core via the Content Editing Wizards component. The vulnerability allows remote authenticated backend users to unserialize arbitrary PHP objects and delete arbitrary files through an unspecified parameter, related to a missing signature. Connected advisories confirm mu...

6.5CVSS6.5AI score0.00408EPSS

Exploits0References3Affected Software1

Prion•added 2013/10/10 10:55 a.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the troubleshooting page in Cisco Identity Services Engine ISE 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCug77655...

4.3CVSS6.2AI score0.00561EPSS

Exploits0References7Affected Software1

NVD•added 2013/07/12 9:55 p.m.•17 views

CVE-2013-3422

Cross-site scripting XSS vulnerability in Administration pages in Cisco Secure Access Control System ACS allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCud75165...

4.3CVSS5.7AI score0.00263EPSS

Exploits0References2

Cvelist•added 2013/07/12 9:0 p.m.•17 views

CVE-2013-3422

5.7AI score0.00263EPSS

Exploits0References2

NVD•added 2009/12/09 6:30 p.m.•12 views

CVE-2009-4149

Cross-site scripting XSS vulnerability in the web interface in CA Service Desk 12.1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter...

4.3CVSS5.7AI score0.00263EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by