258331
|
- |
|
usvn
|
user-friendly_svn
|
Cross-site scripting (XSS) vulnerability in the login panel (svn/login/) in User-Friendly SVN (aka USVN) before 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the username f…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4719
|
2014-07-7 23:15 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258332
|
- |
|
lunarcms
|
lunar_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that (1) add Super users via a …
|
CWE-352
Origin Validation Error
|
CVE-2014-4718
|
2014-07-7 23:10 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258333
|
- |
|
thomson
|
twg87ouir
|
Cross-site request forgery (CSRF) vulnerability in Thomson TWG87OUIR allows remote attackers to hijack the authentication of unspecified victims for requests that change passwords via the Password an…
|
CWE-352
Origin Validation Error
|
CVE-2014-4716
|
2014-07-7 22:57 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258334
|
- |
|
theforeman
|
foreman
|
Multiple cross-site scripting (XSS) vulnerabilities in the host YAML view in Foreman before 1.4.5 and 1.5.x before 1.5.1 allow remote attackers to inject arbitrary web script or HTML via a parameter …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3492
|
2014-07-3 02:50 |
2014-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258335
|
- |
|
theforeman
|
foreman
|
Cross-site scripting (XSS) vulnerability in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to inject arbitrary web script or HTML via the Name field to the New Host groups page, …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3491
|
2014-07-3 02:45 |
2014-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258336
|
- |
|
xen_carousel_plugin_project
|
xen_carousel
|
Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4602
|
2014-07-3 02:40 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258337
|
- |
|
mnt-tech
|
wp-facethumb
|
Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4585
|
2014-07-3 02:12 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258338
|
- |
|
wp-easybooking_plugin_project
|
wp-easybooking
|
Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2014-4584
|
2014-07-3 02:09 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258339
|
- |
|
wp-contact_plugin_project
|
wp-contact-sidebar-widget
|
Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4583
|
2014-07-3 01:59 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258340
|
- |
|
wikipop_plugin_project
|
wikipop
|
Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4575
|
2014-07-3 01:54 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|