Vulnerabilities > Kent WEB > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-02-28 | CVE-2015-0888 | Arbitrary File Deletion vulnerability in Kent-Web Clip Board 2.91/4.02/4.1 KENT-WEB Clip Board before 4.1 allows remote attackers to delete arbitrary files via unspecified vectors. | 6.4 |
| 2014-12-05 | CVE-2014-7258 | Cross-Site Scripting vulnerability in Kent-Web Clip Board 2.91 Cross-site scripting (XSS) vulnerability in KENT-WEB Clip Board 2.91 and earlier, when running certain versions of Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2014-02-01 | CVE-2014-0812 | Cross-Site Scripting vulnerability in Kent-Web Joyful Note 2.8 Cross-site scripting (XSS) vulnerability in KENT-WEB Joyful Note 2.8 and earlier, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2013-06-28 | CVE-2013-3649 | Cross-Site Scripting vulnerability in Kent-Web Clip-Mail 3.3 Cross-site scripting (XSS) vulnerability in KENT-WEB CLIP-MAIL before 3.4, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecified form field. | 4.3 |
| 2013-06-28 | CVE-2013-3648 | Cross-Site Scripting vulnerability in Kent-Web Post-Mail 6.62 Cross-site scripting (XSS) vulnerability in KENT-WEB POST-MAIL before 6.7, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecified form field. | 4.3 |
| 2012-12-06 | CVE-2012-5176 | Cross-Site Scripting vulnerability in Kent-Web Access Report Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 5.02 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to tag embedding. | 4.3 |
| 2012-12-06 | CVE-2012-5175 | Cross-Site Scripting vulnerability in Kent-Web Access Report Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to access-log data. | 4.3 |
| 2012-07-07 | CVE-2012-2643 | Cross-Site Scripting vulnerability in Kent-Web Yy-Board Cross-site scripting (XSS) vulnerability in KENT-WEB YY-BOARD before 6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted form entry. | 4.3 |
| 2012-06-19 | CVE-2012-2637 | Cross-Site Scripting vulnerability in Kent-Web web Patio 4.04 Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie. | 4.3 |
| 2012-06-19 | CVE-2012-2636 | Cross-Site Scripting vulnerability in Kent-Web web Patio Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |