CWE:
 

Topic
Date
Author
Low
DomainMOD 4.11.01 Cross Site Scripting
16.11.2018
Dawood Ansar
Low
WordPress Custom Frontend Login Registration Form 1.01 Cross Site Scripting
16.11.2018
Socket_0x03
Low
Hodhodfarsi.tv - Cross-site scripting (XSS)
14.11.2018
kodak
Low
WordPress PeepSo 1.11.2 Cross Site Scripting
12.11.2018
Socket_0x03
Low
Netscape Enterprise 3.63 Cross Site Scripting
12.11.2018
Rafael Pedrero
Low
Loadbalancer.org Enterprise VA MAX Cross Site Scripting
03.11.2018
Jakub Palaczynski
Low
Zoho ManageEngine OpManager 12.3 Cross Site Scripting
02.11.2018
Hakan Bayir
Low
Oracle Hyperion Planning 11.1.2.4 Cross Site Scripting
27.10.2018
Hasan Alqawzai
Low
Axioscloud Sissiweb Registro Elettronico 7.0.0 Cross Site Scripting
25.10.2018
Dino Barlattani
Low
WordPress Question Answer 1.2.30 Cross Site Scripting
25.10.2018
Socket_0x03
Low
WordPress Pie Register 3.0.17 Cross Site Scripting
25.10.2018
Socket_0x03
Low
AOL File Inclusion / Cross Site ScrIpting
22.10.2018
Juan Carlos Garcia
Low
VestaCP Multiple XSS Vulnerabilities <= v0.9.8-22
21.10.2018
InfinitumIT
Low
Viprinet VPN Hub Router Cross Site Scripting
20.10.2018
Denis Kolegov
Low
User Management 1.1 Cross Site Scripting
19.10.2018
Ismail Tasdelen
Low
WordPress Wordfence 7.1.12 XSS / Username Disclosure
18.10.2018
Janek Vind aka waraxe
Low
BigTree CMS 4.2.23 Cross Site Scripting
16.10.2018
Ismail Tasdelen
Low
WordPress Support Board 1.2.3 Cross Site Scripting
16.10.2018
Ismail Tasdelen
Low
Library CMS 2.1.1 Cross Site Scripting
16.10.2018
Ismail Tasdelen
High
Centos Web Panel 0.9.8.480 XSS / LFI / Code Execution
16.10.2018
Siber Guvenlik Hizmetl...
Low
SugarCRM 6.5.26 Cross Site Scripting
15.10.2018
Purplemet Security
Low
Teltonika RUT9XX Reflected Cross Site Scripting
15.10.2018
David Gnedt
Low
LUYA CMS 1.0.12 Cross Site Scripting
13.10.2018
Ismail Tasdelen
Low
Cockpit CMS CSRF / XSS / Path Traversal
13.10.2018
Simon Uvarov
Low
D-Link DSL-2640T Cross Site Scripting
13.10.2018
Anas Falhi
Low
WAGO 750-881 01.09.18 Cross Site Scripting
11.10.2018
SecuNinja
Low
Sitepress Multilingual 3.6.3 Cross Site Scripting
11.10.2018
Rahul Pratap Singh
Med.
NPLUG Wireless Repeater 1.0.0.14 CSRF / XSS / Authentication Bypass
11.10.2018
Patrick Costa
Low
RICOH MP C1803 JPN Printer Cross-Site Scripting
08.10.2018
Ismail Tasdelen
Low
Claromentis Discuss 1.2.1 Cross Site Scripting
06.10.2018
David Vargas
Low
WordPress Pie Register 3.0.15 Cross Site Scripting
05.10.2018
Socket_0x03
Low
Iranian Ministry of Foreign Affairs XSS Vulnerability
05.10.2018
Ali Abdollahi
Low
PTC ThingWorx Password Disclosure / Cross Site Scripting
03.10.2018
M. Tomaselli
Low
Billion ADSL Router 400G 20151105641 Cross Site Scripting
03.10.2018
Cakes
Low
CMS ISWEB 3.5.3 XSS Reflected
03.10.2018
Offensive0Labs
Low
Wikindx 5.3.2 Multiple Cross-Site Scripting
03.10.2018
Seccops
Low
Navigate CMS 2.8 - Stored Cross-Site Scripting
02.10.2018
Offensive0Labs
Med.
ManageEngine AssetExplorer 6.2.0 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
WordPress WebARX Website Firewall 4.9.8 XSS / Bypass
29.09.2018
ed0x21son
Low
Fork CMS 5.4.0 Cross Site Scripting / HTML Injection
29.09.2018
Ismail Tasdelen
Low
Airties AIR5443v2 1.0.0.18 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
Airties AIR5442 1.0.0.18 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
Airties AIR5750 1.0.0.18 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
Airties AIR5453 1.0.0.18 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
Airties AIR5343v2 1.0.0.18 Cross Site Scripting
29.09.2018
Ismail Tasdelen
Low
Progress Kendo UI Editor 2018.1.221 Cross Site Scripting
27.09.2018
M. Tomaselli
Low
tekno.Portal 0.1b Cross Site Scripting
27.09.2018
Socket_0x03
Low
RICOH MP C2003 Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
RICOH Aficio MP 301 Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
RICOH MP C1803 JPN Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
RICOH MP C307 Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
RICOH MP C6503 Plus Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
RICOH MP C406Z Printer Cross Site Scripting
25.09.2018
Ismail Tasdelen
Low
Tenda Router W300D Multiple Vulnerability
21.09.2018
Work LearninG
Low
RICOH SP 4510SF Printer Cross Site Scripting
20.09.2018
Ismail Tasdelen
Low
LimeSurvey 3.14.7 Cross Site Scripting
19.09.2018
Ismail Tasdelen
Low
Roundcube rcfilters 2.1.6 Cross Site Scripting
19.09.2018
Fahimeh Rezaei
Low
Netis ADSL Router DL4322D RTK 2.1.1 Cross Site Scripting
18.09.2018
Cakes
Low
Wispi messenger website Multiple XSS
17.09.2018
Ali Abdollahi
Low
TSN-Ranksystem < 1.2.7 - Cross-site scripting (XSS)
10.09.2018
kodak
Low
Jorani Leave Management System 0.6.5 Cross Site Scripting
06.09.2018
Javier Olmedo
Low
D-Link Dir-600M N150 Cross-Site Scripting
06.09.2018
PUNIT DARJI
Low
Tenda ADSL Router D152 Cross-Site Scripting
06.09.2018
Sandip Dey
High
Opsview Monitor 5.x Command Execution
05.09.2018
Core Security Technolo...
Low
eVorticity xss vulnerability
05.09.2018
nothing404.team
Low
Glenn Loney xss vulnerability
04.09.2018
nothing404.team
Low
AdultJoy Reflected XSS
03.09.2018
da74
Low
PornZebra Search Engine Ref. XSS
03.09.2018
da74
Low
Cybrotech CyBroHttpServer 1.0.3 Cross Site Scripting
31.08.2018
Emre OVUNC
Low
WordPress Jibu Pro 1.7 Cross Site Scripting
31.08.2018
Renos Nikolaou
Low
JobClass 4.2 - Geolocalized Job Board Script - Cross-Site Scripting
29.08.2018
Ali Alipour
Low
Gigs v2.0 - Cross-Site Scripting
29.08.2018
Ali Alipour
Low
Sitenizolsun thema XSS Cross site request forgery
28.08.2018
Furkan Özer
Low
Agm 7.x Xss sql injection Vulnerability
28.08.2018
indoushka
Low
Dojo Toolkit 1.13 Cross Site Scripting
27.08.2018
Moritz Bechler
Low
Java System Solutions SSO Plugin For BMC MyIT 4.0.13.1 Cross Site Scripting
23.08.2018
Marco Murch
Low
Countly Cross Site Scripting
21.08.2018
Sleepy
Low
BMC MyIT Java System Solutions SSO Plugin 4.0.13.1 Cross Site Scripting
21.08.2018
Marco Murch
Low
WordPress Tagregator 0.6 Cross Site Scripting
21.08.2018
ManhNho
Low
Geutebruck re_porter 16 Cross Site Scripting
20.08.2018
Kamil Suska
Low
Atmosphere 1.x / 2.x Cross Site Scripting
16.08.2018
Lukasz D.
Low
IBM Sterling B2B Integrator 5.2.0.1 / 5.2.6.3 Cross Site Scripting
14.08.2018
Vikas Khanna
Low
IceWarp WebMail 12.0.3.1 Cross Site Scripting
14.08.2018
Mostafa Gharzi
Low
Zimbra 8.6.0_GA_1153 Cross Site Scripting
11.08.2018
Dino Barlattani
Low
CMS BUZZ 2.9 Cross Site Scripting
09.08.2018
Thiago Sena
Low
Entrepreneur Job Portal Script 3.0.1 Cross-Site Scripting
07.08.2018
Vikas Chaudhary
Low
PHP Template Store Script 3.0.6 Cross Site Scripting
07.08.2018
Sarafraz Khan
Low
Open-AudIT Community 2.2.6 Cross Site Scripting
07.08.2018
Ranjeet Jaiswal
Low
LAMS Cross Site Scripting
07.08.2018
Nikola Kojic
Low
Monstra-Dev 3.0.4 Cross Site Scripting
07.08.2018
Nainsi Gupta
Low
Basic B2B Script 2.0.0 Cross-Site Scripting
03.08.2018
Vikas Chaudhary
Low
Chartered Accountant : Auditor Website 2.0.1 Cross Site Scripting
03.08.2018
Vikas Chaudhary
Low
DataLife Engine 13.0 Cross Site Scripting
02.08.2018
Mostafa Gharzi
Low
Website by TheGoodWebCompany.com xss
30.07.2018
Bl4ck M4n
Low
Super Cms Blog Pro PHP Script v1.0 - XSS
28.07.2018
GUIA Brahim Fouad
Low
WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting
27.07.2018
DefenseCode
Low
WordPress Strong Testimonials 2.31.4 Cross Site Scripting
27.07.2018
DefenseCode
Low
WordPress Snazzy Maps 1.1.3 Cross Site Scripting
27.07.2018
DefenseCode
Med.
Zoho ManageEngine 13 (13790 build) XSS / File Read / File Deletion
23.07.2018
Xiaotian Wang
Low
MyBB New Threads 1.1 Cross Site Scripting
20.07.2018
0xB9


CVEMAP Search Results

CVE
Details
Description
2018-11-05
Low
CVE-2018-18938

Vendor: Wuzhicms
Software: Wuzhi cms
 

 
An issue was discovered in WUZHI CMS 4.1.0. There is stored XSS in index.php?m=core&f=index via an ontoggle attribute to details/open/ within a second input field.

 
Low
CVE-2018-18939

Vendor: Wuzhi cms project
Software: Wuzhi cms
 

 
An issue was discovered in WUZHI CMS 4.1.0. There is stored XSS in index.php?m=core&f=index via a seventh input field.

 
2018-11-02
Low
CVE-2017-1609

Vendor: IBM
Software: Rational qua...
 

 
IBM Quality Manager (RQM) 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 132929.

 
2018-10-24
Low
CVE-2018-1541

Vendor: IBM
Software: Websphere co...
 

 
IBM WebSphere Commerce Enterprise V7, V8, and V9 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 142596.

 
2018-10-12
Low
CVE-2018-1533

Vendor: IBM
Software: Rational pub...
 

 
IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 142431.

 
2018-10-11
Low
CVE-2018-1706

Vendor: IBM
Software: Spectrum sym...
 

 
IBM Spectrum Symphony 7.2.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 146341.

 
2018-10-07
Low
CVE-2015-9273

Updating...
 

 
The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for WordPress has XSS via an HTTP Referer header, or via a field associated with JavaScript-based Referer tracking.

 
2018-10-05
Low
CVE-2018-0458

Vendor: Cisco
Software: Prime collab...
 

 
A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to click a customized link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive browser-based information.

 
2018-10-04
Low
CVE-2018-1604

Vendor: IBM
Software: Rational qua...
 

 
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 143794.

 
Low
CVE-2018-17876

Vendor: Web-feet
Software: Coaster cms
 

 
A Stored XSS vulnerability has been discovered in the v5.5.0 version of the Coaster CMS product.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top