Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cross-site scripting vulnerabilities and exploits
(subscribe to this query)
700
VMScore
CVE-2006-6929
Multiple cross-site scripting (XSS) vulnerabilities in Rapid Classified 3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to (a) reply.asp or (b) view_print.asp, the (2) SH1 parameter to (c) search.asp, the (3) name parameter to repl...
Ga Soft Rapid Classified 3.1
4 EDB exploits
435
VMScore
CVE-2017-3132
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to Execute unauthorized code or commands via the action input during the activation of a FortiToken.
Fortinet Fortios
1 EDB exploit
355
VMScore
CVE-2012-1979
Cross-site scripting (XSS) vulnerability in starnet/index.php in SyndeoCMS 3.0.01 and previous versions allows remote authenticated users to inject arbitrary web script or HTML via the email parameter (aka Email address field) in an edit_user configuration action.
Syndeocms Syndeocms 2.8.00
Syndeocms Syndeocms 2.7.00
Syndeocms Syndeocms 2.9.00
Syndeocms Syndeocms 2.8.1
Syndeocms Syndeocms 2.8.02
Syndeocms Syndeocms 2.4
Syndeocms Syndeocms 2.6.00
Syndeocms Syndeocms 2.5.01
Syndeocms Syndeocms
Syndeocms Syndeocms 3.0.00
Syndeocms Syndeocms 2.5.00
Syndeocms Syndeocms 2.4.10
1 EDB exploit
435
VMScore
CVE-2011-1838
Multiple cross-site scripting (XSS) vulnerabilities in TemplateLogin.pm in TWiki prior to 5.0.2 allow remote malicious users to inject arbitrary web script or HTML via the origurl parameter to a (1) view script or (2) login script.
Twiki Twiki 4.1.2
Twiki Twiki 4.2.3
Twiki Twiki 4.0.4
Twiki Twiki 4.0.3
Twiki Twiki 4.2.0
Twiki Twiki
Twiki Twiki 5.0.0
Twiki Twiki 4.1.0
Twiki Twiki 4.0.5
Twiki Twiki 4.2.1
Twiki Twiki 4.1.1
Twiki Twiki 4.3.1
Twiki Twiki 4.2.4
Twiki Twiki 4.0.2
Twiki Twiki 4.0.1
Twiki Twiki 4.3.0
Twiki Twiki 4.3.2
Twiki Twiki 4.0.0
Twiki Twiki 4.2.2
Twiki Twiki 4.5.0
1 EDB exploit
355
VMScore
CVE-2019-15814
Multiple stored XSS vulnerabilities in Sentrifugo 3.2 could allow authenticated users to inject arbitrary web script or HTML.
Sentrifugo Sentrifugo 3.2
1 EDB exploit
383
VMScore
CVE-2012-4241
Multiple cross-site scripting (XSS) vulnerabilities in Microcart 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) PATH_INFO or (2) query string to _admin/index.php or (3) first_name, (4) last_name, (5) cc, (6) exp, (7) cvv, (8) address1, (9) add...
Microcart Project Microcart 1.0
685
VMScore
CVE-2006-4593
Cross-site scripting (XSS) vulnerability in index.php in SoftBB 0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Softbb Softbb 0.1
1 EDB exploit
355
VMScore
CVE-2020-8777
Alfresco Enterprise prior to 5.2.7 and Alfresco Community prior to 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document.
Alfresco Alfresco
1 EDB exploit
435
VMScore
CVE-2018-19136
DomainMOD up to and including 4.11.01 has XSS via the assets/edit/registrar-account.php raid parameter.
Domainmod Domainmod
1 EDB exploit
383
VMScore
CVE-2020-28350
A Cross Site Scripting (XSS) vulnerability exists in OPAC in Sokrates SOWA SowaSQL up to and including 5.6.1 via the sowacgi.php typ parameter.
Sokrates Sowasql
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »