Aggregates CVE and security vulnerability intelligence across all kent-web-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact session compromise, affecting vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2015-0889 | KENT-WEB Joyful Note before 5.3 allows remote attackers to delete files or write to files, and consequently execute arbitrary code, via vectors involving an article. | [email protected] | 7.5 | 2.10% | 2015-02-28 | 2026-05-06 |
| CVE-2015-0888 | KENT-WEB Clip Board before 4.1 allows remote attackers to delete arbitrary files via unspecified vectors. | [email protected] | 6.4 | 0.66% | 2015-02-28 | 2026-05-06 |
| CVE-2014-7258 | Cross-site scripting (XSS) vulnerability in KENT-WEB Clip Board 2.91 and earlier, when running certain versions of Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 0.25% | 2014-12-05 | 2026-05-06 |
| CVE-2014-0812 | Cross-site scripting (XSS) vulnerability in KENT-WEB Joyful Note 2.8 and earlier, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 0.37% | 2014-02-01 | 2026-04-29 |
| CVE-2013-3649 | Cross-site scripting (XSS) vulnerability in KENT-WEB CLIP-MAIL before 3.4, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecified form field. | [email protected] | 4.3 | 0.30% | 2013-06-28 | 2026-04-29 |
| CVE-2013-3648 | Cross-site scripting (XSS) vulnerability in KENT-WEB POST-MAIL before 6.7, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecified form field. | [email protected] | 4.3 | 0.30% | 2013-06-28 | 2026-04-29 |
| CVE-2012-5176 | Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 5.02 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to tag embedding. | [email protected] | 4.3 | 0.25% | 2012-12-06 | 2026-04-29 |
| CVE-2012-5175 | Cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT 4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to access-log data. | [email protected] | 4.3 | 0.25% | 2012-12-06 | 2026-04-29 |
| CVE-2012-2643 | Cross-site scripting (XSS) vulnerability in KENT-WEB YY-BOARD before 6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted form entry. | [email protected] | 4.3 | 0.25% | 2012-07-07 | 2026-04-29 |
| CVE-2012-2637 | Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie. | [email protected] | 4.3 | 0.25% | 2012-06-19 | 2026-04-29 |
| CVE-2012-2636 | Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 0.25% | 2012-06-19 | 2026-04-29 |
| CVE-2011-4172 | Multiple cross-site scripting (XSS) vulnerabilities in KENT-WEB WEB FORUM before 5.1 allow remote attackers to inject arbitrary web script or HTML via (1) an e-mail address field or (2) a cookie, a related issue to CVE-2011-3383, CVE-2011-3983, and CVE-2011-3984. | [email protected] | 4.3 | 0.26% | 2011-10-24 | 2026-04-29 |
| CVE-2011-3984 | Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "web form entries." | [email protected] | 4.3 | 0.49% | 2011-10-24 | 2026-04-29 |
| CVE-2011-3983 | Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to cookies. | [email protected] | 4.3 | 0.36% | 2011-10-24 | 2026-04-29 |
| CVE-2011-3383 | Cross-site scripting (XSS) vulnerability in KENT-WEB WEB FORUM 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to "the web page to be output." | [email protected] | 4.3 | 0.31% | 2011-10-24 | 2026-04-29 |
| CVE-2008-5224 | Cross-site scripting (XSS) vulnerability in Kent Web Mart 1.61 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 0.33% | 2008-11-25 | 2026-04-23 |