Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-1905
Cross-site scripting (XSS) vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via encoded special characters in the forward_to parameter, as demonstrated using "&l...
Pineapple Technologies Quizshock
1 EDB exploit
4.3
CVSSv2
CVE-2012-4873
Cross-site scripting (XSS) vulnerability in the file_download function in GNUBoard prior to 4.34.21 allows remote malicious users to inject arbitrary web script or HTML via the filename parameter.
Sir Gnuboard
1 EDB exploit
4.3
CVSSv2
CVE-2005-3412
Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote malicious users to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: URL in an <img> tag.
Elite Forum Elite Forum 1.0.0.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-4939
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AdPeeps 8.5d1 allow remote malicious users to inject arbitrary web script or HTML via the (1) uid parameter, (2) uid parameter in a login_lookup action, (3) uid parameter in an adminlogin action, (4) campaignid p...
Impactsoftcompany Adpeeps 8.5
2 EDB exploits
7.5
CVSSv2
CVE-2010-4963
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote malicious users to execute arbitrary SQL commands via the order_by parameter.
Hulihanapplications Hulihan Bxr 0.6.8
1 EDB exploit
4.3
CVSSv2
CVE-2007-5411
Cross-site scripting (XSS) vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote malicious users to inject arbitrary web script or HTML via the From header in a SIP message.
Linksys Spa941
1 EDB exploit
4.3
CVSSv2
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
4.3
CVSSv2
CVE-2005-0818
Cross-site scripting (XSS) vulnerability in PunBB 1.2.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) email or (2) Jabber parameters.
Punbb Punbb 1.2.3
1 EDB exploit
4.3
CVSSv2
CVE-2005-0863
Cross-site scripting (XSS) vulnerability in PHPOpenChat v3.x allows remote malicious users to inject arbitrary web script or HTML via (1) the chatter parameter to regulars.php or (2) the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php.
Phpopenchat Phpopenchat 3.0.2
Phpopenchat Phpopenchat 3.0.0
Phpopenchat Phpopenchat 3.0.1
1 EDB exploit
4.3
CVSSv2
CVE-2009-3162
Cross-site scripting (XSS) vulnerability in Multi Website 1.5 allows remote malicious users to inject arbitrary web script or HTML via the search parameter in a search action to the default URI.
Multi-website Multi Website 1.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »