Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-0863
Cross-site scripting (XSS) vulnerability in PHPOpenChat v3.x allows remote malicious users to inject arbitrary web script or HTML via (1) the chatter parameter to regulars.php or (2) the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php.
Phpopenchat Phpopenchat 3.0.0
Phpopenchat Phpopenchat 3.0.1
Phpopenchat Phpopenchat 3.0.2
1 EDB exploit
4.3
CVSSv2
CVE-2012-1782
Multiple cross-site scripting (XSS) vulnerabilities in questions/ask in OSQA 3b allow remote malicious users to inject arbitrary web script or HTML via the (1) url bar or (2) picture bar.
Osqa Osqa 3b
1 EDB exploit
4.3
CVSSv2
CVE-2009-3719
Cross-site scripting (XSS) vulnerability in comment.asp in Battle Blog 1.25 and 1.30 build 2 allows remote malicious users to inject arbitrary web script or HTML via a comment.
Davethewebguy Battle Blog 1.25
Davethewebguy Battle Blog 1.30
1 EDB exploit
7.5
CVSSv2
CVE-2009-3718
SQL injection vulnerability in admin/authenticate.asp in Battle Blog 1.25 and 1.30 build 2 allows remote malicious users to execute arbitrary SQL commands via the UserName parameter.
Davethewebguy Battle Blog 1.30
Davethewebguy Battle Blog 1.25
1 EDB exploit
4.3
CVSSv2
CVE-2006-4308
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Learning System 6, Blackboard Learning and Community Portal Suite 6.2.3.23, and Blackboard Vista 4 allow remote malicious users to inject arbitrary Javascript, VBScript, or HTML via (1) data, (2) vbscript, and (3) ...
Blackboard Vista 4
Blackboard Blackboard 6.0
Blackboard Blackboard Learning And Community Portal Suite 6.0
Blackboard Blackboard Learning And Community Portal Suite 6.2.3.23
1 EDB exploit
4.3
CVSSv2
CVE-2012-5315
Multiple cross-site scripting (XSS) vulnerabilities in php ireport 1.0 allow remote malicious users to inject arbitrary web script or HTML via the message parameter to (1) messages_viewer.php, (2) home.php, or (3) history.php.
Php Ireport Project Php Ireport 1.0
1 EDB exploit
5.8
CVSSv2
CVE-2006-1979
Cross-site scripting (XSS) vulnerability in mwguest.php in Manic Web MWGuest 2.1.0 allows remote malicious users to inject arbitrary web script or HTML via the homepage parameter.
Manic Web Mwguest 2.1.0
1 EDB exploit
4.3
CVSSv2
CVE-2011-1524
Cross-site scripting (XSS) vulnerability in the management login GUI page in Symantec LiveUpdate Administrator (LUA) prior to 2.3 allows remote malicious users to inject arbitrary web script or HTML via the username field, as demonstrated by injecting an IFRAME element into the e...
Symantec Liveupdate Administrator 2.2.2
Symantec Liveupdate Administrator 2.2.1
Symantec Liveupdate Administrator 2.1.3
Symantec Liveupdate Administrator 2.1.2
Symantec Liveupdate Administrator 2.1.0
Symantec Liveupdate Administrator
1 EDB exploit
4.3
CVSSv2
CVE-2002-1803
Cross-site scripting (XSS) vulnerability in PHP-Nuke 6.0 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Francisco Burzi Php-nuke 6.0
1 EDB exploit
4.3
CVSSv2
CVE-2010-3202
Cross-site scripting (XSS) vulnerability in Flock Browser 3.0.0.3989 allows remote malicious users to inject arbitrary web script or HTML via a crafted bookmark.
Flock Flock 3.0.0.3989
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »