Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2013-0161
Havalite CMS 1.1.7 has a stored XSS vulnerability
Havalite Havalite 1.1.7
1 EDB exploit
4.3
CVSSv2
CVE-2007-2908
Cross-site scripting (XSS) vulnerability in calendar.php in Jelsoft vBulletin prior to 3.6.6 allows remote malicious users to inject arbitrary web script or HTML via the title field in a single add action.
Jelsoft Vbulletin
1 EDB exploit
2.6
CVSSv2
CVE-2007-3838
Cross-site scripting (XSS) vulnerability in takeprofedit.php in TBDev.NET DR 11-10-05-BETA-SF1:111005 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the SRC attribute of a SCRIPT element in the avatar parameter. NOTE: this may be re...
Tbdev.net Dr 010306
Tbdev.net Dr 11-10-05-beta-sf1 1
Tbdev.net Dr 16-12-05-beta-1 161
1 EDB exploit
5
CVSSv2
CVE-2002-1429
Cross-site scripting vulnerability in board.php of endity.com ShoutBOX allows remote malicious users to inject arbitrary HTML into the shoutbox page via the site parameter.
Endity.com Shoutbox 1.2
1 EDB exploit
4.3
CVSSv2
CVE-2008-1173
Cross-site scripting (XSS) vulnerability in account-inbox.php in TorrentTrader Classic 1.08 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Torrenttrader Torrenttrader 1.08
Torrenttrader Torrenttrader Classic 1.08
1 EDB exploit
6
CVSSv2
CVE-2007-0399
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Simple Machines Forum (SMF) 1.1 RC3 allow remote authenticated users to inject arbitrary web script or HTML via the (1) recipient or (2) BCC field when selecting send in a pm action.
Simple Machines Simple Machines Forum 1.1 Rc3
1 EDB exploit
4.3
CVSSv2
CVE-2012-4873
Cross-site scripting (XSS) vulnerability in the file_download function in GNUBoard prior to 4.34.21 allows remote malicious users to inject arbitrary web script or HTML via the filename parameter.
Sir Gnuboard
1 EDB exploit
7.5
CVSSv2
CVE-2002-0902
Cross-site scripting vulnerability in phpBB 2.0.0 (phpBB2) allows remote malicious users to execute Javascript as other phpBB users by including a http:// and a double-quote (") in the [IMG] tag, which bypasses phpBB's security check, terminates the src parameter of the...
Phpbb Group Phpbb 2.0 Rc1
Phpbb Group Phpbb 2.0 Rc3
Phpbb Group Phpbb 2.0.0
Phpbb Group Phpbb 2.0 Beta1
Phpbb Group Phpbb 2.0 Rc2
Phpbb Group Phpbb 2.0 Rc4
1 EDB exploit
4.3
CVSSv2
CVE-2003-1031
Cross-site scripting (XSS) vulnerability in register.php for vBulletin 3.0 Beta 2 allows remote malicious users to inject arbitrary HTML or web script via optional fields such as (1) "Interests-Hobbies", (2) "Biography", or (3) "Occupation."
1 EDB exploit
6.4
CVSSv2
CVE-2006-2252
Cross-site scripting vulnerability in submit.php in OpenFAQ 0.4.0 allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Openfaq Openfaq 0.4.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »