Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1805
Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Dacode Dacode 1.2.0
1 EDB exploit
NA
CVE-2002-1958
Cross-site scripting (XSS) vulnerability in kmMail 1.0, 1.0a, and 1.0b allows remote malicious users to inject arbitrary web script or HTML via (1) javascript in onmouseover or other attributes in "safe" HTML tags such as the "b" tag, or (2) the Subject field.
Kmmail Kmmail 1.0
Kmmail Kmmail 1.0b
Kmmail Kmmail 1.0a
1 EDB exploit
NA
CVE-2002-2339
Cross-site scripting (XSS) vulnerability in configure.asp in Script-Shed GuestBook 1.0 allows remote malicious users to inject arbitrary web script or HTML via a javascript: URL in (1) image, (2) img, (3) image=right, (4) img=right, (5) image=left, and (6) img=left tags.
Script Shed Ssgbook 1.0
1 EDB exploit
NA
CVE-2002-2424
Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote malicious users to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag.
Ekilat Llc Php\\(reactor\\) 1.27pl1
1 EDB exploit
NA
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
NA
CVE-2010-5051
Cross-site scripting (XSS) vulnerability in admin/core/admin_func.php in razorCMS 1.0 stable allows remote malicious users to inject arbitrary web script or HTML via the content parameter in an edit action to admin/index.php.
Razorcms Razorcms 1.0
1 EDB exploit
NA
CVE-2006-6721
Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar parameter.
Knusperleicht Shoutbox 2.6
1 EDB exploit
NA
CVE-2005-1076
Cross-site scripting (XSS) vulnerability in the discussion board functionality for WebCT Campus Edition 4.1 allows remote malicious users to inject arbitrary web script or HTML via the message field.
Webct Webct Campus 4.1
1 EDB exploit
NA
CVE-2006-5712
Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote malicious users to inject arbitrary web script via the expression Cascading Style Sheets (CSS) function, as demonstrated using the width style for an IMG element.
Mirapoint Mirapoint Webmail
1 EDB exploit
5.4
CVSSv3
CVE-2017-6782
A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to modify a page in the web interface of the affected application. The vulnerability is due to improper sanitization of parameter values by the af...
Cisco Prime Infrastructure 3.2\\(0.0\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »