Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

inject vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2014-2065
Cross-site scripting (XSS) vulnerability in Jenkins before 1.551 and LTS before 1.532.2 allows remote attackers to inject arbitrary web script or HTML via the iconSize cookie....
Jenkins Jenkins
4.3
CVSSv2
CVE-2014-0029
Multiple cross-site scripting (XSS) vulnerabilities in the SAM web application in Red Hat katello-headpin allow remote attackers to inject arbitrary web script or HTML via unspecified parameters....
Redhat Subscription Asset Manager 1.0.0
4.3
CVSSv2
CVE-2014-0176
Cross-site scripting (XSS) vulnerability in application/panel_control in CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Redhat Cloudforms 3.0 Management Engine 5.2Redhat Cloudforms 3.0 Management Engine 5.2.1Redhat Cloudforms 3.0 Management Engine 5.2.1.6Redhat Cloudforms 3.0 Management Engine 5.2.2Redhat Cloudforms 3.0 Management Engine 5.2.3Redhat Cloudforms 3.0 Management Engine 5.2.3.2Redhat Cloudforms 3.0 Management Engine
5
CVSSv2
CVE-2013-4578
jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation....
Oracle Jdk 1.7.0Oracle Jre 1.7.0Oracle JdkOracle Jre
5
CVSSv2
CVE-2017-8812
MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline....
Mediawiki MediawikiMediawiki Mediawiki 1.28.0Mediawiki Mediawiki 1.28.1Mediawiki Mediawiki 1.28.2Mediawiki Mediawiki 1.29.0Mediawiki Mediawiki 1.29.1Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2013-4492
Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem before 0.6.6 for Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted I18n::MissingTranslationData.new call....
Ruby-i18n I18n
4.3
CVSSv2
CVE-2013-1823
Cross-site scripting (XSS) vulnerability in the Notifications form in Red Hat Subscription Asset Manager before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the username field....
Redhat Subscription Asset Manager 1.0.0Redhat Subscription Asset Manager 1.1.0Redhat Subscription Asset Manager
3.5
CVSSv2
CVE-2014-7812
Cross-site scripting (XSS) vulnerability in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allows remote authenticated users to inject arbitrary web script or HTML via the System Groups field....
Redhat Network Satellite 5.6Redhat Spacewalk -Suse Manager 1.7
3.5
CVSSv2
CVE-2014-3531
Multiple cross-site scripting (XSS) vulnerabilities in Foreman before 1.5.2 allow remote authenticated users to inject arbitrary web script or HTML via the operating system (1) name or (2) description....
Theforeman Foreman
3.5
CVSSv2
CVE-2014-7811
Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat Network (RHN) Satellite before 5.7.0 allow remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the REST API....
Redhat Network SatelliteRedhat Spacewalk -Suse Manager 1.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-1647CVE-2021-20491CVE-2021-28310CVE-2021-30487CVE-2021-21087XPath injectionbrute forceCVE-2020-7308remote attackers
Vulnerability Notification
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook