Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
inject vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-2065
Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie....
Jenkins Jenkins
4.3
CVSSv2
CVE-2014-0029
Multiple cross-site scripting (XSS) vulnerabilities in the SAM web application in Red Hat katello-headpin allow remote attackers to inject arbitrary web script or HTML via unspecified parameters....
Redhat Subscription Asset Manager 1.0.0
4.3
CVSSv2
CVE-2014-0176
Cross-site scripting (XSS) vulnerability in application/panel_control in CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Redhat Cloudforms 3.0 Management Engine 5.2
Redhat Cloudforms 3.0 Management Engine 5.2.1
Redhat Cloudforms 3.0 Management Engine 5.2.1.6
Redhat Cloudforms 3.0 Management Engine 5.2.2
Redhat Cloudforms 3.0 Management Engine 5.2.3
Redhat Cloudforms 3.0 Management Engine 5.2.3.2
Redhat Cloudforms 3.0 Management Engine
5
CVSSv2
CVE-2013-4578
jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation....
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jdk
Oracle Jre
5
CVSSv2
CVE-2017-8812
MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline....
Mediawiki Mediawiki
Mediawiki Mediawiki 1.28.0
Mediawiki Mediawiki 1.28.1
Mediawiki Mediawiki 1.28.2
Mediawiki Mediawiki 1.29.0
Mediawiki Mediawiki 1.29.1
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2013-4492
Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationData.new call....
Ruby-i18n I18n
4.3
CVSSv2
CVE-2013-1823
Cross-site scripting (XSS) vulnerability in the Notifications form in Red Hat Subscription Asset Manager before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the username field....
Redhat Subscription Asset Manager 1.0.0
Redhat Subscription Asset Manager 1.1.0
Redhat Subscription Asset Manager
3.5
CVSSv2
CVE-2014-7812
Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field....
Redhat Network Satellite 5.6
Redhat Spacewalk -
Suse Manager 1.7
3.5
CVSSv2
CVE-2014-3531
Multiple cross-site scripting (XSS) vulnerabilities in Foreman before 1.5.2 allow remote authenticated users to inject arbitrary web script or HTML via the operating system (1) name or (2) description....
Theforeman Foreman
3.5
CVSSv2
CVE-2014-7811
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the REST API....
Redhat Network Satellite
Redhat Spacewalk -
Suse Manager 1.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-1647
CVE-2021-20491
CVE-2021-28310
CVE-2021-30487
CVE-2021-21087
XPath injection
brute force
CVE-2020-7308
remote attackers
Vulnerability Notification
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »