映射到 CWE-79 的搜索结果 (6660)

CVE-2015-8477(发布:2017-05-23 00:29:01)NMS
CVSS4.3

[原文]Cross-site scripting (XSS) vulnerability in Redmine before 2.6.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving flash message rendering.

CVE-2015-5381(发布:2017-05-23 00:29:00)NMS
CVSS4.3

[原文]Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox parameter to the default URI.

CVE-2016-4903(发布:2017-05-22 12:29:00)NMS
CVSS4.3

[原文]Cross-site scripting vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2015-3998(发布:2017-05-17 10:29:00)NM
CVSS4.3

[原文]Cross-site scripting (XSS) vulnerability in phpwhois 4.2.5, as used in the adsense-click-fraud-monitoring plugin 1.7.5 for WordPress, allows remote attackers to inject arbitrary web script or HTML via the query parameter to whois.php.

CVE-2016-4855(发布:2017-05-12 14:29:00)NMPS
CVSS4.3

[原文]Cross-site scripting vulnerability in ADOdb versions prior to 5.20.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2016-4856(发布:2017-05-12 14:29:00)NMS
CVSS3.5

[原文]Cross-site scripting vulnerability in Splunk Enterprise 6.3.x prior to 6.3.5 and Splunk Light 6.3.x prior to 6.3.5 allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors.

首页上一页12345678下一页尾页 第2页 / 共1110页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站