CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27433 matches found

RedhatCVE•added 2025/05/21 8:39 p.m.•7 views

CVE-2002-2362

Cross-site scripting XSS vulnerability in formheader.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter...

4.3CVSS5.9AI score0.01449EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:38 p.m.•3 views

CVE-2002-2321

Cross-site scripting XSS vulnerability in 1 showcat.php and 2 addyoursite.php in phpLinkat 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the catid parameter...

4.3CVSS6AI score0.01436EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:34 p.m.•5 views

CVE-2002-2166

Cross-site scripting XSS vulnerability in FuseTalk 2.0 and 3.0 allows remote attackers to insert arbitrary HTML and web script...

4.3CVSS6.1AI score0.00938EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:31 p.m.•3 views

CVE-2009-3021

Cross-site scripting XSS vulnerability in Site Calendar 'mycaljp' plugin 2.0.0 through 2.0.6, as used in the Japanese extended package of Geeklog 1.5.0 through 1.5.2 and when distributed 20090629 or earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01065EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:30 p.m.•9 views

CVE-2002-2044

Cross-site scripting XSS vulnerability in xstatadmin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action...

4.3CVSS5.9AI score0.01938EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:30 p.m.•7 views

CVE-2008-1041

Cross-site scripting XSS vulnerability in mwhois.php in Matt Wilson Matt's Whois MWhois allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

4.3CVSS5.9AI score0.01075EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:25 p.m.•6 views

CVE-2002-1852

Cross-site scripting XSS vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via 1 the URL or 2 a parameter to test2.pl...

4.3CVSS5.9AI score0.03363EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:24 p.m.•8 views

CVE-2002-1805

Cross-site scripting XSS vulnerability in DaCode 1.2.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag...

4.3CVSS5.9AI score0.01812EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:24 p.m.•6 views

CVE-2002-1803

Cross-site scripting XSS vulnerability in PHP-Nuke 6.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag...

4.3CVSS5.9AI score0.01717EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:21 p.m.•9 views

CVE-2008-0700

Cross-site scripting XSS vulnerability in search.php in Crux Software CruxCMS 3.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.8AI score0.01196EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:20 p.m.•6 views

CVE-2008-0669

Cross-site scripting XSS vulnerability in search.cgi in Sift Unity allows remote attackers to inject arbitrary web script or HTML via the qt parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.8AI score0.00845EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:17 p.m.•6 views

CVE-2008-0618

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.8.0 and 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 gbname, 2 gbemail, 3 gburl, and 4 gbmsg parameters to unspecified programs. NOTE: the provenance of this information i...

4.3CVSS6AI score0.01514EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:13 p.m.•9 views

CVE-2009-4187

Multiple cross-site scripting XSS vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.01664EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:13 p.m.•5 views

CVE-2008-0558

Cross-site scripting XSS vulnerability in Uniwin eCart Professional before 2.0.16 allows remote attackers to inject arbitrary web script or HTML via the rp parameter to cartView.asp and unspecified other components. NOTE: the provenance of this information is unknown; the details are obtained...

4.3CVSS5.9AI score0.00845EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:13 p.m.•5 views

CVE-2009-2893

Multiple cross-site scripting XSS vulnerabilities in index.php in XZero Community Classifieds 4.97.8 allow remote attackers to inject arbitrary web script or HTML via 1 the postevent parameter in a post action or 2 the xzcaly parameter...

4.3CVSS6AI score0.01484EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:12 p.m.•10 views

CVE-2009-2882

Multiple cross-site scripting XSS vulnerabilities in PG MatchMaking allow remote attackers to inject arbitrary web script or HTML via the show parameter to 1 browseladies.php and 2 browsemen.php, the 3 gender parameter to search.php, and the 4 id parameter to services.php...

4.3CVSS6AI score0.01511EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:12 p.m.•5 views

CVE-2008-0540

Multiple cross-site scripting XSS vulnerabilities in trixbox 2.4.2.0 allow remote attackers to inject arbitrary web script or HTML via the query string to index.php in 1 user/ or 2 maint/...

4.3CVSS6AI score0.01211EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 8:7 p.m.•8 views

CVE-2009-1343

Cross-site scripting XSS vulnerability in the Print aka Printer, e-mail and PDF versions module 5.x before 5.x-4.5 and 6.x before 6.x-1.5, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via content titles...

4.3CVSS6AI score0.01065EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 7:57 p.m.•5 views

CVE-2006-6536

Cross-site scripting XSS vulnerability in hata.asp in Cilem Haber Free Edition allows remote attackers to inject arbitrary web script or HTML via the hata parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

6.8CVSS5.8AI score0.01523EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 7:56 p.m.•5 views

CVE-2009-1080

Multiple cross-site scripting XSS vulnerabilities in Sun Java System Identity Manager IdM 7.0 through 8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID 19033...

4.3CVSS6AI score0.0197EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by