CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27433 matches found

RedhatCVE•added 2025/05/22 12:8 a.m.•4 views

CVE-2009-3147

Cross-site scripting XSS vulnerability in showproduct.php in ReviewPost Pro vB3 allows remote attackers to inject arbitrary web script or HTML via the date parameter...

4.3CVSS5.9AI score0.01097EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:7 a.m.•9 views

CVE-2009-3486

Multiple cross-site scripting XSS vulnerabilities in the J-Web interface in Juniper JUNOS 8.5R1.14 allow remote authenticated users to inject arbitrary web script or HTML via the host parameter to 1 the pinghost program, reachable through the diagnose program; or 2 the traceroute program, reachab...

3.5CVSS5.6AI score0.01248EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:7 a.m.•12 views

CVE-2009-5000

Multiple cross-site scripting XSS vulnerabilities in the Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 4.0.2.x before 4.0.2.3-P8AE-FP003 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to .jsp pages...

4.3CVSS5.8AI score0.00845EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 12:4 a.m.•9 views

CVE-2009-2783

Multiple cross-site scripting XSS vulnerabilities in XOOPS 2.3.3 allow remote attackers to inject arbitrary web script or HTML via the 1 op parameter to modules/pm/viewpmsg.php and 2 query string to modules/profile/user.php...

4.3CVSS6AI score0.01937EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 11:56 p.m.•7 views

CVE-2009-0245

Cross-site scripting XSS vulnerability in Usagi Project MyNETS 1.2.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-4629...

4.3CVSS5.9AI score0.01223EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 11:11 p.m.•8 views

CVE-2004-2246

Cross-site scripting XSS vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversationid parameter to viewpic.php...

4.3CVSS6AI score0.0269EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 11:4 p.m.•12 views

CVE-2008-3937

Multiple cross-site scripting XSS vulnerabilities in Open Media Collectors Database OpenDb 1.0.6 allow remote attackers to inject arbitrary web script or HTML via the 1 userid parameter in an edit action to useradmin.php, the 2 title parameter to listings.php, and the 3 redirecturl parameter to...

6.1CVSS6AI score0.01358EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 10:58 p.m.•9 views

CVE-2008-1342

Multiple cross-site scripting XSS vulnerabilities in the search feature in Polymita BPM-Suite and CollagePortal allow remote attackers to inject arbitrary web script or HTML via the 1 q and 2 luceneindexfieldvalue parameters. NOTE: the provenance of this information is unknown; the details are...

4.3CVSS5.9AI score0.00855EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 10:47 p.m.•7 views

CVE-2008-0723

Cross-site scripting XSS vulnerability in mynews.inc.php in MyNews 1.6.4, and other earlier 1.6.x versions, allows remote attackers to inject arbitrary web script or HTML via the hash parameter in an admin action to index.php, a different vulnerability than CVE-2006-2208.1...

4.3CVSS5.8AI score0.01867EPSS

Exploits2References1

RedhatCVE•added 2025/05/21 10:42 p.m.•7 views

CVE-2002-1808

Cross-site scripting XSS vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic...

4.3CVSS5.9AI score0.01242EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 10:42 p.m.•6 views

CVE-2002-1853

Cross-site scripting XSS vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by 1 myarticles.php, 2 search.php, 3 stats.php, or 4 standard.lib.php...

4.3CVSS5.9AI score0.01177EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 10:42 p.m.•4 views

CVE-2002-1799

Cross-site scripting XSS vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the 1 email parameter to add.php or 2 banurl parameter...

4.3CVSS5.9AI score0.03614EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 10:38 p.m.•7 views

CVE-2006-7187

Cross-site scripting XSS vulnerability in the showrecentsearches function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to inject arbitrary web script or HTML via the srch variable...

4.3CVSS5.9AI score0.00845EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 10:11 p.m.•8 views

CVE-2009-1908

Cross-site scripting XSS vulnerability in Skip 1.0.2 and earlier, and 1.1RC2 and earlier 1.1RC versions, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.01223EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 10:11 p.m.•8 views

CVE-2002-2192

Cross-site scripting XSS vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via 1 a Host: header when DNS wildcards are supported or 2 the query string in a "dir" request to indexed folders...

4.3CVSS6.4AI score0.03686EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 10:8 p.m.•8 views

CVE-2005-4339

Cross-site scripting XSS vulnerability in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to inject arbitrary web script or HTML via the context parameter to announcement.pl, which is reflected in the...

4.3CVSS5.9AI score0.00948EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 10:7 p.m.•6 views

CVE-2005-2044

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.4.3 and 1.5 RC 1 allow remote attackers to inject arbitrary web script or HTML via the 1 showcourse parameter to browse.php, 2 subject parameter to contact.php, 3 cid parameter to content.php, 4 l parameter to inbox/sendmessage.php, th...

4.3CVSS6AI score0.02908EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:58 p.m.•10 views

CVE-2009-3833

Cross-site scripting XSS vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter...

4.3CVSS5.9AI score0.01269EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:57 p.m.•6 views

CVE-2009-3467

Cross-site scripting XSS vulnerability in an unspecified method in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

4.3CVSS5.9AI score0.02493EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 9:57 p.m.•6 views

CVE-2009-2424

Cross-site scripting XSS vulnerability in search.php in Ebay Clone 2009 allows remote attackers to inject arbitrary web script or HTML via the mode parameter...

4.3CVSS5.9AI score0.01243EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by