Lucene search
K

27433 matches found

Vulnrichment
Vulnrichment
added 2022/12/13 12:0 a.m.9 views

CVE-2022-45028

A cross-site scripting XSS vulnerability in Arris NVG443B 9.3.0h3d36 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request sent to /cgi-bin/logs.ha...

5.9AI score0.00526EPSS
Exploits1References2
NVD
NVD
added 2022/12/05 11:15 p.m.15 views

CVE-2022-45769

A cross-site scripting XSS vulnerability in ClicShoppingV3 v3.402 allows attackers to execute arbitrary web scripts or HTML via a crafted URL parameter...

6.1CVSS0.00473EPSS
Exploits1References1
Prion
Prion
added 2022/12/02 3:15 p.m.14 views

Cross site scripting

A cross-site scripting XSS vulnerability in Book Store Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the Add New System User module...

4.9CVSS5.3AI score0.00377EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/11/30 11:15 p.m.17 views

Cross site scripting

Digital Alert Systems’ DASDEC software prior to version 4.1 contains a cross-site scripting XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the SSH username, username field of the login page, or via the HTTP host header. The injected content is stored in...

4.9CVSS5.3AI score0.00438EPSS
Exploits0References1Affected Software5
CVE
CVE
added 2022/11/30 10:58 p.m.63 views

CVE-2019-18265

Digital Alert Systems’ DASDEC software prior to version 4.1 is affected by CVE-2019-18265, an XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the login page’s SSH username field or the HTTP Host header. The injected content is stored in logs and rendered ...

5.4CVSS5.2AI score0.00438EPSS
Exploits0References1Affected Software1
Check Point Advisories
Check Point Advisories
added 2022/11/28 12:0 a.m.12 views

WSO2 Identity Server Cross Site Scripting (CVE-2018-8716)

A cross-site scripting vulnerability exists in WSO2 Identity Server. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

3.5CVSS4.8AI score0.39332EPSS
Exploits5
Check Point Advisories
Check Point Advisories
added 2022/11/27 12:0 a.m.8 views

Super Flexible Software Syncovery Cross-site Scripting (CVE-2022-36533)

A cross-site scripting vulnerability exists in Super Flexible Software Syncovery. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

5.2AI score0.42632EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2022/11/27 12:0 a.m.17 views

Grafana Cross-Site Scripting (CVE-2022-31097)

A cross-site scripting vulnerability exists in Grafana. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

4.9AI score0.68603EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2022/11/21 12:0 a.m.6 views

Atmosphere Java Framework Reflected Cross-Site Scripting

A cross-site scripting vulnerability exists in Atmosphere. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

4.7AI score
Exploits0
NVD
NVD
added 2022/11/15 1:15 a.m.18 views

CVE-2022-42118

A Cross-site scripting XSS vulnerability in the Portal Search module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 15, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML via the tag parameter...

6.1CVSS0.0115EPSS
Exploits0References3
OSV
OSV
added 2022/11/15 1:15 a.m.19 views

CVE-2022-42118

A Cross-site scripting XSS vulnerability in the Portal Search module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 15, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML via the tag parameter...

6.1CVSS5.9AI score0.0115EPSS
Exploits0References3
NVD
NVD
added 2022/11/15 1:15 a.m.17 views

CVE-2022-42111

A Cross-site scripting XSS vulnerability in the Sharing module's user notification in Liferay Portal 7.2.1 through 7.4.2, and Liferay DXP 7.2 before fix pack 19, and 7.3 before update 4 allows remote attackers to inject arbitrary web script or HTML by sharing an asset with a crafted payload...

5.4CVSS0.00515EPSS
Exploits0References2
OSV
OSV
added 2022/11/15 1:15 a.m.19 views

CVE-2022-42111

A Cross-site scripting XSS vulnerability in the Sharing module's user notification in Liferay Portal 7.2.1 through 7.4.2, and Liferay DXP 7.2 before fix pack 19, and 7.3 before update 4 allows remote attackers to inject arbitrary web script or HTML by sharing an asset with a crafted payload...

5.4CVSS5.8AI score0.00515EPSS
Exploits0References2
Prion
Prion
added 2022/11/15 1:15 a.m.18 views

Cross site scripting

A Cross-site scripting XSS vulnerability in the Sharing module's user notification in Liferay Portal 7.2.1 through 7.4.2, and Liferay DXP 7.2 before fix pack 19, and 7.3 before update 4 allows remote attackers to inject arbitrary web script or HTML by sharing an asset with a crafted payload...

4.9CVSS5.4AI score0.00515EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2022/11/15 12:15 a.m.21 views

CVE-2022-42110

A Cross-site scripting XSS vulnerability in the Announcements module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML...

6.1CVSS6AI score0.00562EPSS
Exploits0References2
Prion
Prion
added 2022/11/15 12:15 a.m.20 views

Cross site scripting

A Cross-site scripting XSS vulnerability in the Announcements module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML...

5.8CVSS6.1AI score0.00562EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.20 views

CVE-2022-42118

A Cross-site scripting XSS vulnerability in the Portal Search module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 15, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML via the tag parameter...

6.2AI score0.0115EPSS
Exploits0References3
CVE
CVE
added 2022/11/15 12:0 a.m.58 views

CVE-2022-42111

CVE-2022-42111 is an XSS flaw in the Sharing module’s user notification in Liferay Portal 7.2.1–7.4.2 and Liferay DXP 7.2 (pre-FP19) and 7.3 (pre-Update 4). A crafted asset sharing payload enables remote script/HTML injection. Affected components: Sharing module, user notification; root cause: im...

5.4CVSS5.3AI score0.00515EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/11/15 12:0 a.m.68 views

CVE-2022-42118

The CVE-2022-42118 XSS flaw affects Liferay Portal 7.1.0–7.4.2 and Liferay DXP 7.1 (before fix pack 27), 7.2 (before fix pack 15), and 7.3 (before service pack 3) in the Portal Search module via the tag parameter. Exploitation can inject arbitrary script/HTML, potentially stealing credentials or ...

6.1CVSS6AI score0.0115EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/11/14 12:0 a.m.13 views

CVE-2022-44390

A cross-site scripting XSS vulnerability in EyouCMS V1.5.9-UTF8-SP1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Public Security Record Number text field...

5.5AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder