Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 5:56 a.m.5 views

SUSE CVE-2010-4208

Cross-site scripting XSS vulnerability in the Flash component infrastructure in YUI 2.5.0 through 2.8.1, as used in Bugzilla, Moodle, and other products, allows remote attackers to inject arbitrary web script or HTML via vectors related to uploader/assets/uploader.swf...

4.3CVSS5.9AI score0.04427EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 5:55 a.m.3 views

SUSE CVE-2010-4570

Cross-site scripting XSS vulnerability in the duplicate-detection functionality in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote attackers to inject arbitrary web script or HTML via the summary field, related to the DataTable widget in YUI...

4.3CVSS5.8AI score0.01739EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2020/09/01 4:42 p.m.52 views

Cross-Site Scripting in yui

Affected versions of yui are vulnerable to cross-site scripting in the uploader.swf and io.swf utilities, via script injection in the url. Recommendation YUI has published their recommendation to fix this issue. Their recommendation is to: - Delete self-hosted copies of these files if you are not...

4.3CVSS2.5AI score0.01492EPSS
Exploits0References9Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2020/07/24 8:16 a.m.33 views

Security Bulletin: Security vulnerabilities have been identified in BigFix Platform shipped with IBM License Metric Tool.

Summary BigFix Platform is shipped with IBM License Metric Tool. Information about a security vulnerability affecting BigFix Platform has been published in a security bulletin. Vulnerability Details CVEID: CVE-2019-11358 DESCRIPTION: jQuery, as used in Drupal core, is vulnerable to cross-site...

6.1CVSS0.3AI score0.87218EPSS
Exploits5Affected Software1
OSV
OSVadded 2018/10/10 9:29 p.m.4 views

CVE-2018-17784

Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack on a targeted system...

6.1CVSS5.7AI score0.04353EPSS
Exploits5References3
Packet Storm
Packet Stormadded 2015/02/25 12:0 a.m.36 views

Cisco Ironport AsyncOS Cross Site Scripting

Cisco Ironport AsyncOS Cross Site Scripting Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco Ironport ESA - AsyncOS 8.0.1-023 Cisco Ironport WSA - AsyncOS 8.5.5-022 Cisco Ironport SMA - AsyncOS 8.4.0-126 Date: 24/02/2015 Credits: Glafkos Charalambous CVE: CVE-2013-6780...

4.3CVSS6.4AI score0.02417EPSS
Exploits2
Kitploit
Kitploitadded 2014/05/08 2:0 a.m.33 views

Acunetix Web Vulnerability Scanner Version 9 - Web Application Security Testing Tool

Acunetix W eb V ulnerability S canner WVS is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive...

7.9AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2010/11/05 12:0 a.m.207 views

YUI charts.swf / swfstore.swf / uploader.swf XSS

The version of the YUI library of JavaScript utilities and controls hosted on the remote web server includes at least one SWF file that is affected by an unspecified cross-site scripting vulnerability. An attacker can leverage this issue to inject arbitrary HTML or script code into a user's brows...

4.3CVSS5.4AI score0.04465EPSS
Exploits0References7
Rows per page
Query Builder