Export limit exceeded: 43893 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (43893 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2011-2670 1 Mozilla 1 Firefox 2024-11-21 6.1 Medium
Mozilla Firefox before 3.6 is vulnerable to XSS via the rendering of Cascading Style Sheets
CVE-2011-2499 1 Mambo-foundation 1 Mambo Cms 2024-11-21 6.1 Medium
Mambo CMS through 4.6.5 has multiple XSS.
CVE-2011-1497 1 Rubyonrails 1 Rails 2024-11-21 6.1 Medium
A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.
CVE-2011-1150 1 Bbpress 1 Bbpress 2024-11-21 6.1 Medium
bbPress through 1.0.2 has XSS in /bb-login.php url via the re parameter.
CVE-2011-1135 1 S9y 1 Serendipity 2024-11-21 6.1 Medium
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in plugins/ExtendedFileManager/manager.php and plugins/ImageManager/manager.php.
CVE-2011-1133 1 S9y 1 Serendipity 2024-11-21 6.1 Medium
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code via plugins/ExtendedFileManager/backend.php.
CVE-2011-1086 1 Openfiler 1 Openfiler 2024-11-21 6.1 Medium
Cross-site scripting (XSS) vulnerability in admin/system.html in Openfiler 2.3 allows remote attackers to inject arbitrary web script or HTML via the device parameter.
CVE-2011-1084 1 Smoothwall 1 Smoothwall Express 2024-11-21 6.1 Medium
A cross-site scripting (XSS) vulnerability in Smoothwall Express 3.
CVE-2011-1069 1 Phpshop 1 Phpshop 2024-11-21 6.1 Medium
PHPShop through 0.8.1 has XSS.
CVE-2011-1009 1 Vanillaforums 1 Vanilla 2024-11-21 6.1 Medium
Vanilla Forums 2.0.17.1 through 2.0.17.5 has XSS in /vanilla/index.php via the p parameter.
CVE-2011-0544 2 Debian, Phpbb 2 Debian Linux, Phpbb 2024-11-21 6.1 Medium
phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.
CVE-2011-0428 1 Ikiwiki 1 Ikiwiki 2024-11-21 6.1 Medium
Cross Site Scripting (XSS) in ikiwiki before 3.20110122 could allow remote attackers to insert arbitrary JavaScript due to insufficient checking in comments.
CVE-2010-5340 1 Icewarp 1 Webclient 2024-11-21 6.1 Medium
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter password is non-persistent in 10.2.0.
CVE-2010-5339 1 Icewarp 1 Webclient 2024-11-21 6.1 Medium
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][uid] is non-persistent in 10.1.3 and 10.2.0.
CVE-2010-5338 1 Icewarp 1 Webclient 2024-11-21 6.1 Medium
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][action] is non-persistent in 10.1.3 and 10.2.0.
CVE-2010-5337 1 Icewarp 1 Webclient 2024-11-21 6.1 Medium
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][controller] is non-persistent in 10.1.3 and 10.2.0.
CVE-2010-5336 1 Icewarp 1 Webclient 2024-11-21 6.1 Medium
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: admin/login.html with the parameter username is persistent in 10.2.0.
CVE-2010-4662 1 Pmwiki 1 Pmwiki 2024-11-21 6.1 Medium
PmWiki before 2.2.21 has XSS.
CVE-2010-4659 1 Status 1 Statusnet 2024-11-21 6.1 Medium
Cross-site scripting (XSS) vulnerability in statusnet through 2010 in error message contents.
CVE-2010-4264 1 Vanillaforums 1 Vanilla Forums 2024-11-21 6.1 Medium
It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side.