Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cross-site scripting vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6431
Multiple cross-site scripting (XSS) vulnerabilities in BMForum 5.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) outpused parameter to index.php, the (2) footer_copyright and (3) verandproname parameters to newtem/footer/bsd01footer.php, and the ...
Bmforum Bmforum 5.6
3 EDB exploits
NA
CVE-2009-3186
Multiple cross-site scripting (XSS) vulnerabilities in VideoGirls BiZ allow remote malicious users to inject arbitrary web script or HTML via the (1) t parameter to forum.php, (2) profile_name parameter to profile.php, and (3) p parameter to view.php.
Videogirls Videogirls Biz
3 EDB exploits
NA
CVE-2009-3360
Multiple cross-site scripting (XSS) vulnerabilities in Datemill 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) return parameter to photo_view.php, and st parameter to (2) photo_search.php and (3) search.php.
Datemill Datemill 1.0
3 EDB exploits
NA
CVE-2007-2300
Multiple cross-site scripting (XSS) vulnerabilities in Endy Kristanto Surat kabar / News Management Online (aka phpwebnews) 0.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the m_txt parameter to (1) iklan.php, (2) index.php, or (3...
Surat Kabar Phpwebnews 0.1
Surat Kabar Phpwebnews 0.2
3 EDB exploits
6.1
CVSSv3
CVE-2018-8831
A Persistent XSS vulnerability exists in Kodi (formerly XBMC) up to and including 17.6 that allows the execution of arbitrary HTML/script code in the context of the victim user's browser via a playlist.
Kodi Kodi
1 EDB exploit
NA
CVE-2010-3906
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.
Git Git 1.4.2.4
Git Git 1.4.2
Git Git 1.1.3
Git Git 1.3.2
Git Git 1.0.7
Git Git 1.1.5
Git Git 1.0.3
Git Git 1.2.2
Git-scm Git 0.04
Git-scm Git 0.7.0
Git Git 1.5.2.1
Git Git 1.5.1.5
Git Git 1.4.2.2
Git Git 1.4.2.3
Git Git 1.1.4
Git Git 1.3.1
Git Git 1.1.0
Git Git 1.4.1.1
Git Git 1.0.6
Git Git 1.1.6
Git Git 1.2.3
Git-scm Git 0.5
1 EDB exploit
NA
CVE-2005-1162
Multiple cross-site scripting (XSS) vulnerabilities in OneWorldStore allow remote malicious users to inject arbitrary web script or HTML via the (1) sEmail parameter to owContactUs.asp, (2) bSub parameter to owListProduct.asp, or the (3) Name, (4) Email, or (5) Comment fields in ...
Oneworldstore Oneworldstore
2 EDB exploits
6.1
CVSSv3
CVE-2016-3411
Cross-site scripting (XSS) vulnerability in Zimbra Collaboration prior to 8.7.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka bug 103609.
Synacor Zimbra Collaboration Suite
1 EDB exploit
5.4
CVSSv3
CVE-2018-12095
A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php.
Oecms Project Oecms 3.1
1 EDB exploit
6.1
CVSSv3
CVE-2017-14620
SmarterStats Version 11.3.6347 will Render the Referer Field of HTTP Logfiles from URL /Data/Reports/ReferringURLsWithQueries resulting in Stored Cross Site Scripting.
Smartertools Smarterstats 11.3.6347
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »