Total
21765 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-1899 | 1 Citrix | 2 Netscaler Access Gateway, Netscaler Access Gateway Firmware | 2015-08-05 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Citrix NetScaler Gateway (formerly Citrix Access Gateway Enterprise Edition) 9.x before 9.3.66.5 and 10.x before 10.1.123.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2014-1879 | 1 Phpmyadmin | 1 Phpmyadmin | 2015-08-05 | 3.5 LOW | N/A |
| Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action. | |||||
| CVE-2015-2870 | 1 Chiyutw | 3 Bf-630, Bf-630w, Bf-660c | 2015-08-03 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element. | |||||
| CVE-2014-3738 | 1 Zenoss | 1 Zenoss | 2015-07-31 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Zenoss 4.2.5 allows remote attackers to inject arbitrary web script or HTML via the title of a device. | |||||
| CVE-2014-3247 | 1 O-dyn | 1 Collabtive | 2015-07-31 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Collabtive 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the desc parameter in an Add project (addpro) action to admin.php. | |||||
| CVE-2014-2947 | 1 Bizagi | 1 Business Process Management Suite | 2015-07-31 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Login.aspx in Bizagi BPM Suite before 10.3 allows remote attackers to inject arbitrary web script or HTML via the txtUsername parameter. | |||||
| CVE-2014-2975 | 1 Silver-peak | 1 Vx | 2015-07-31 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in php/user_account.php in Silver Peak VX before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. | |||||
| CVE-2014-2236 | 1 Askbot | 1 Askbot | 2015-07-30 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Askbot before 0.7.49 allow remote attackers to inject arbitrary web script or HTML via vectors related to the (1) tag or (2) user search forms. | |||||
| CVE-2014-2235 | 1 Askbot | 1 Askbot | 2015-07-30 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Askbot before 0.7.49 allows remote attackers to inject arbitrary web script or HTML via vectors related to the question search form. | |||||
| CVE-2014-2080 | 1 Modx | 1 Modx Revolution | 2015-07-30 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter. | |||||
| CVE-2014-1971 | 1 Silexlabs | 1 Silex | 2015-07-30 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Silex before 2.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2013-5013 | 1 Symantec | 1 Web Gateway | 2015-07-30 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.2 allow remote attackers to inject arbitrary web script or HTML via (1) vectors involving PHP scripts and (2) unspecified other vectors. | |||||
| CVE-2014-1968 | 1 Riken | 1 Xoonips | 2015-07-30 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2013-2639 | 1 Ctera | 1 Cloud Storage Os | 2015-07-30 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in CTERA Cloud Storage OS before 3.2.29.0, 3.2.42.0, and earlier allows remote attackers to inject arbitrary web script or HTML via the description in a project folder. | |||||
| CVE-2014-5331 | 1 Aptana | 1 Aflax | 2015-07-29 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Aflax allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2014-5330 | 1 Birdblog | 1 Birdblog | 2015-07-29 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in BirdBlog allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2014-5322 | 1 Filemaker | 2 Filemaker Pro, Filemaker Pro Advanced | 2015-07-29 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the Instant Web Publish function in FileMaker Pro before 13 and Pro Advanced before 13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-3640. | |||||
| CVE-2013-1096 | 1 Novell | 1 Identity Manager Roles Based Provisioning Module | 2015-07-29 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the Roles Based Provisioning Module 4.0.2 before Field Patch D for Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via a taskDetail taskId. | |||||
| CVE-2013-6780 | 1 Yahoo | 1 Yui | 2015-07-28 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via the allowedDomain parameter. | |||||
| CVE-2015-2976 | 1 Research-artisan | 1 Research Artisan Lite | 2015-07-27 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Research Artisan Lite before 1.18 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted HTML document or (2) a crafted URL that is mishandled during access-log analysis. | |||||