Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1131
Cross-site scripting (XSS) vulnerability in read.php in bitweaver CMS 1.2.1 allows remote malicious users to inject arbitrary web script or HTML via the comment_title parameter.
Bitweaver Bitweaver 1.2.1
1 EDB exploit
NA
CVE-2006-6721
Multiple cross-site scripting (XSS) vulnerabilities in shout.php in Knusperleicht ShoutBox 2.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) sbNick or (2) sbKommentar parameter.
Knusperleicht Shoutbox 2.6
1 EDB exploit
NA
CVE-2007-1678
Cross-site scripting (XSS) vulnerability in the Fizzle 0.5 extension for Firefox allows remote malicious users to inject arbitrary web script or HTML via RSS feeds, which are executed by the chrome: URI handler.
Fizzle Fizzle 0.5
1 EDB exploit
NA
CVE-2007-5411
Cross-site scripting (XSS) vulnerability in the Linksys SPA941 VoIP Phone with firmware 5.1.8 allows remote malicious users to inject arbitrary web script or HTML via the From header in a SIP message.
Linksys Spa941
1 EDB exploit
NA
CVE-2008-5759
Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka Flatnuke3) 2008-12-11 allows remote malicious users to inject arbitrary web script or HTML via the name parameter in an updaterecord action to index.php in the 08_Files module. NOTE: the provenance of this information i...
Flatnux Flatnux 2008-12-11
1 EDB exploit
NA
CVE-2004-2038
Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) before LDU 700 allows remote malicious users to inject arbitrary web script or HTML via a BBcode img tag in (1) functions.php, (2) header.php or (3) auth.inc.php.
Neocrome Land Down Under 700.01
Neocrome Land Down Under 700.02
Neocrome Land Down Under 601
Neocrome Land Down Under 602
Neocrome Land Down Under
1 EDB exploit
NA
CVE-2003-1278
Cross-site scripting vulnerability (XSS) in OpenTopic 2.3.1 allows remote malicious users to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into IMG tags.
Infopop Opentopic 2.3.1
1 EDB exploit
NA
CVE-2006-0933
Cross-site scripting (XSS) vulnerability in PHPX 3.5.9 allows remote malicious users to inject arbitrary web script or HTML via a javascript URI in a url XCode tag in a posted message. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
Phpx Phpx 3.5.9
1 EDB exploit
6.1
CVSSv3
CVE-2014-4925
Cross-site scripting (XSS) vulnerability in Good for Enterprise for Android 2.8.0.398 and 1.9.0.40.
Good Good For Enterprise 1.9.0.40
Good Good For Enterprise 2.8.0.398
NA
CVE-2004-0319
Cross-site scripting (XSS) vulnerability in the font tag in ezBoard 7.3u allows remote malicious users to execute arbitrary script as other users, as demonstrated using the background:url in a (1) font color or (2) font face argument.
Ezboard Ezboard 7.3u
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »