Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0896
Cross-site scripting (XSS) vulnerability in the (1) Sage prior to 1.3.10, and (2) Sage++ extensions for Firefox, allows remote malicious users to inject arbitrary web script or HTML via a "<SCRIPT/=''SRC='" sequence in an RSS feed, a different vulnerab...
Mozilla Firefox
Sage Sage 1.3.6
Sage Sage
Sage Sage 1.0 Beta 3
1 EDB exploit
NA
CVE-2009-1070
Cross-site scripting (XSS) vulnerability in system/index.php in ExpressionEngine 1.6.4 up to and including 1.6.6, and possibly earlier versions, allows remote malicious users to inject arbitrary web script or HTML via the avatar parameter.
Expressionengine Expressionengine 1.6.4
Expressionengine Expressionengine 1.6.5
Expressionengine Expressionengine 1.6.6
1 EDB exploit
NA
CVE-2002-2424
Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote malicious users to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag.
Ekilat Llc Php\\(reactor\\) 1.27pl1
1 EDB exploit
NA
CVE-2003-0295
Cross-site scripting (XSS) vulnerability in private.php for vBulletin 3.0.0 Beta 2 allows remote malicious users to inject arbitrary web script and HTML via the "Preview Message" capability.
Jelsoft Vbulletin 3.0.0 Beta 2
1 EDB exploit
NA
CVE-2006-0933
Cross-site scripting (XSS) vulnerability in PHPX 3.5.9 allows remote malicious users to inject arbitrary web script or HTML via a javascript URI in a url XCode tag in a posted message. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
Phpx Phpx 3.5.9
1 EDB exploit
NA
CVE-2008-0872
Cross-site scripting (XSS) vulnerability in SmarterTools SmarterMail Enterprise 4.3 allows remote malicious users to inject arbitrary web script or HTML via a STYLE attribute of an element in the Subject field of an e-mail message.
Smartertools Smartermail Enterprise 4.3
1 EDB exploit
NA
CVE-2010-5051
Cross-site scripting (XSS) vulnerability in admin/core/admin_func.php in razorCMS 1.0 stable allows remote malicious users to inject arbitrary web script or HTML via the content parameter in an edit action to admin/index.php.
Razorcms Razorcms 1.0
1 EDB exploit
NA
CVE-2002-1804
Cross-site scripting (XSS) vulnerability in NPDS 4.8 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Npds Npds 4.8
1 EDB exploit
NA
CVE-2002-1805
Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote malicious users to inject arbitrary web script or HTML via Javascript in an IMG tag.
Dacode Dacode 1.2.0
1 EDB exploit
NA
CVE-2002-1958
Cross-site scripting (XSS) vulnerability in kmMail 1.0, 1.0a, and 1.0b allows remote malicious users to inject arbitrary web script or HTML via (1) javascript in onmouseover or other attributes in "safe" HTML tags such as the "b" tag, or (2) the Subject field.
Kmmail Kmmail 1.0
Kmmail Kmmail 1.0b
Kmmail Kmmail 1.0a
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »