Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-1678
Cross-site scripting (XSS) vulnerability in the Fizzle 0.5 extension for Firefox allows remote malicious users to inject arbitrary web script or HTML via RSS feeds, which are executed by the chrome: URI handler.
Fizzle Fizzle 0.5
1 EDB exploit
4.3
CVSSv2
CVE-2007-1229
Cross-site scripting (XSS) vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote malicious users to inject arbitrary web script or HTML via the top-level URI on the Incoming interface (port 8001/tcp), which is not properly handled in the administrator interface when v...
Nullsoft Shoutcast Server 1.9.7
1 EDB exploit
4.3
CVSSv2
CVE-2010-2154
Cross-site scripting (XSS) vulnerability in the Search Site in CMScout 2.09, and possibly other versions, allows remote malicious users to inject arbitrary web script or HTML via the search parameter. NOTE: some of these details are obtained from third party information.
Cmscout Cmscout 2.09
1 EDB exploit
4.3
CVSSv2
CVE-2003-1278
Cross-site scripting vulnerability (XSS) in OpenTopic 2.3.1 allows remote malicious users to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into IMG tags.
Infopop Opentopic 2.3.1
1 EDB exploit
6.8
CVSSv2
CVE-2004-0319
Cross-site scripting (XSS) vulnerability in the font tag in ezBoard 7.3u allows remote malicious users to execute arbitrary script as other users, as demonstrated using the background:url in a (1) font color or (2) font face argument.
Ezboard Ezboard 7.3u
1 EDB exploit
4.3
CVSSv2
CVE-2014-4925
Cross-site scripting (XSS) vulnerability in Good for Enterprise for Android 2.8.0.398 and 1.9.0.40.
Good Good For Enterprise 1.9.0.40
Good Good For Enterprise 2.8.0.398
4.3
CVSSv2
CVE-2002-1805
Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Dacode Dacode 1.2.0
1 EDB exploit
4.3
CVSSv2
CVE-2002-1806
Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Drupal Drupal 4.0.0
1 EDB exploit
4.3
CVSSv2
CVE-2002-1958
Cross-site scripting (XSS) vulnerability in kmMail 1.0, 1.0a, and 1.0b allows remote malicious users to inject arbitrary web script or HTML via (1) javascript in onmouseover or other attributes in "safe" HTML tags such as the "b" tag, or (2) the Subject field.
Kmmail Kmmail 1.0
Kmmail Kmmail 1.0b
Kmmail Kmmail 1.0a
1 EDB exploit
4.3
CVSSv2
CVE-2008-1873
Cross-site scripting (XSS) vulnerability in the private message feature in Nuke ET 3.2 and 3.4, when using Internet Explorer, allows remote authenticated users to inject arbitrary web script or HTML via a CSS property in the STYLE attribute of a DIV element in the mensaje paramet...
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »