CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-5759

Malware in sbrugna...

4.3CVSS8.9AI score0.00297EPSS

Exploits0References7

Github Security Blog•added 2020/09/01 4:42 p.m.•47 views

Cross-Site Scripting in yui

Affected versions of yui are vulnerable to cross-site scripting in the uploader.swf and io.swf utilities, via script injection in the url. Recommendation YUI has published their recommendation to fix this issue. Their recommendation is to: - Delete self-hosted copies of these files if you are not...

4.3CVSS2.5AI score0.0031EPSS

Exploits0References9Affected Software1

Openbugbounty•added 2016/02/01 6:50 a.m.•8 views

bbs.evony.com XSS vulnerability

Vulnerable URL: http://bbs.evony.com//clientscript/yui/uploader/assets/uploader.swf?allowedDomain=%22%29%29%29catch%28e%29alert%28/XSS/%29;// Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

6.3AI score

Exploits0

securityvulns•added 2015/08/24 12:0 a.m.•49 views

UBNT Bug Bounty #1 - Client Side Cross Site Scripting Vulnerability

Document Title: =============== UBNT Bug Bounty 1 - Client Side Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1465 52988 Release Date: ============= 2015-08-17 Vulnerability Laboratory ID VL-ID:...

Exploits0

Vulnerability Lab•added 2015/08/17 12:0 a.m.•20 views

UBNT Bug Bounty #1 - CS Cross Site Scripting Vulnerability

Document Title: =============== UBNT Bug Bounty 1 - CS Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1465 52988 Release Date: ============= 2015-08-17 Vulnerability Laboratory ID VL-ID:...

7.4AI score

Exploits0

Packet Storm•added 2015/02/25 12:0 a.m.•33 views

Cisco Ironport AsyncOS Cross Site Scripting

Cisco Ironport AsyncOS Cross Site Scripting Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco Ironport ESA - AsyncOS 8.0.1-023 Cisco Ironport WSA - AsyncOS 8.5.5-022 Cisco Ironport SMA - AsyncOS 8.4.0-126 Date: 24/02/2015 Credits: Glafkos Charalambous CVE: CVE-2013-6780...

4.3CVSS6.4AI score0.01196EPSS

Exploits2

NVD•added 2012/11/16 12:24 p.m.•17 views

CVE-2012-5882

Cross-site scripting XSS vulnerability in the Flash component infrastructure in YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to uploader.swf, a similar issue to CVE-2010-4208...

4.3CVSS5.5AI score0.00297EPSS

Exploits0References4

UbuntuCve•added 2012/11/16 12:24 p.m.•27 views

CVE-2012-5882

4.3CVSS7.2AI score0.00297EPSS

Exploits0References4

Cvelist•added 2012/11/16 11:0 a.m.•27 views

CVE-2012-5882

5.5AI score0.00297EPSS

Exploits0References4

UbuntuCve•added 2010/11/07 10:0 p.m.•32 views

CVE-2010-4208

Cross-site scripting XSS vulnerability in the Flash component infrastructure in YUI 2.5.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to uploader/assets/uploader.swf...

4.3CVSS6AI score0.0254EPSS

Exploits0References1

CVE•added 2010/11/07 9:0 p.m.•75 views

CVE-2010-4208

CVE-2010-4208 is an XSS vulnerability in the Flash component infrastructure of YUI, specifically in the uploader.swf used by YUI 2.5.0 through 2.8.1 (and related references indicate continued concern up to 2.9.0). The root cause is improper validation in the Flash uploader assets, allowing remote...

4.3CVSS5.8AI score0.0254EPSS

Exploits0References15Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by