CWE:
 

Topic
Date
Author
Low
ObjectPlanet Opinio 7.12 Cross Site Scripting
30.07.2021
Ang Kar Min
Low
WordPress Plugin Mimetic Books 0.2.13 Default Publisher ID field Stored Cross-Site Scripting (XSS)
27.07.2021
Vikas Srivastava
Med.
Zabbix 5.x SQL Injection / Cross Site Scripting
26.07.2021
Taurus Omar
Med.
Tagstoo 2.0.1 Cross Site Scripting / Code Execution
26.07.2021
Taurus Omar
Low
WordPress Simple Post 1.1 Cross Site Scripting
23.07.2021
Vikas Srivastava
Low
Ampache 4.4.2 Cross Site Scripting
21.07.2021
Daniel Bishtawi
Low
WordPress KN Fix Your Title 1.0.1 Cross Site Scripting
21.07.2021
Aakash Choudhary
Low
WordPress Mimetic Books 0.2.13 Cross Site Scripting
19.07.2021
Vikas Srivastava
Med.
OX App Suite / OX Guard / OX Documents SSRF / Cross Site Scripting
17.07.2021
Martin Heiland
Low
Invoice System 1.0 Cross Site Scripting
15.07.2021
Subhadip Nag
Low
WordPress WPFront Notification Bar 1.9.1.04012 Cross Site Scripting
14.07.2021
Swapnil Subhash Bodeka...
Low
Pandora FMS 7.54 Cross Site Scripting
14.07.2021
nu11secur1ty
Low
WordPress Current Book 1.0.1 Cross Site Scripting
14.07.2021
Vikas Srivastava
Low
4Images 1.8 Cross Site Scripting
11.07.2021
Piyush Patil
Low
Zoo Management System 1.0 Cross Site Scripting
09.07.2021
Subhadip Nag
High
Wyomind Help Desk 1.3.6 XSS / Traversal / Shell Upload
08.07.2021
Patrik Lantz
Low
Employee Record Management System 1.2 Cross Site Scripting
08.07.2021
Subhadip Nag
Low
perfexcrm 1.10 Cross Site Scripting
07.07.2021
Alhasan Abbas
Low
Real Estate 7 WordPress Theme < 3.1.1 - Unauthenticated Reflected XSS
05.07.2021
Visse
High
Scratch Desktop 3.17 Code Execution / Cross Site Scripting
02.07.2021
apple502j
Low
AKCP sensorProbe SPX476 Cross Site Scripting
02.07.2021
Tyler Butler
Low
Teachers Record Management System 1.0 email Stored Cross-site Scripting (XSS)
29.06.2021
nhattruong
Low
Atlassian Jira Server/Data Center 8.16.0 Cross Site Scripting
28.06.2021
Captain_hook
Low
SAS Environment Manager 2.5 Cross Site Scripting
28.06.2021
Luqman Hakim Zahari
Med.
Personnel Record Management System 1.0 Authentication Bypass / XSS
28.06.2021
Richard Jones
Low
WordPress YOP Polls 6.2.7 Cross Site Scripting
28.06.2021
Toby Jackson
Low
ICE Hrm 29.0.0.OS xml upload Stored Cross-Site Scripting
27.06.2021
*Piyush Patil *& Rafal...
Low
WordPress WP Google Maps 8.1.11 Cross Site Scripting
25.06.2021
Mohammed Adam
Low
Cerberus FTP Web Service 11 Cross Site Scripting
11.06.2021
Mohammad Hossein Kaviy...
Low
WordPress Visitors-App 0.3 Cross Site Scripting
09.06.2021
Mesut Cetin
Low
FUDForum 3.1.0 Cross Site Scripting
06.06.2021
Piyush Patil
Low
CHIYU IoT Cross Site Scripting
02.06.2021
sirpedrotavares
Low
Shopizer 2.16.0 Multiple Cross-Site Scripting (XSS)
02.06.2021
Marek Toth
Low
WordPress WP Prayer 1.6.1 Cross Site Scripting
01.06.2021
Bastijn Ouwendijk
Low
i-doit 1.15.2 Cross Site Scripting
30.05.2021
nu11secur1ty
Low
WordPress LifterLMS 4.21.0 Cross Site Scripting
28.05.2021
Captain_hook
Low
Pandora FMS 6.0SP3 Cross Site Scripting
27.05.2021
nu11secur1ty
Med.
Postbird 0.8.4 Cross Site Scripting / Local File Inclusion
27.05.2021
Debshubra Chakraborty
Low
Simple Chatbot Application 1.0 Category Stored Cross site Scripting
26.05.2021
Vani K G
Low
WordPress ReDi Restaurant Reservation 21.0307 Cross Site Scripting
25.05.2021
Bastijn Ouwendijk
Low
WordPress Cookie Law Bar 1.2.1 Cross Site Scripting
25.05.2021
Mesut Cetin
Low
Gadget Works Online Ordering System 1.0 Cross Site Scripting
25.05.2021
Vinay H C
Low
WordPress Plugin Stop Spammers 2021.8 log Reflected Cross-site Scripting (XSS)
23.05.2021
Hosein Vita
Low
Spotweb-Develop 1.4.9 Cross Site Scripting
21.05.2021
nu11secur1ty
Low
COVID19 Testing Management System 1.0 Admin name Cross-Site Scripting (XSS)
19.05.2021
Rohit Burke
Low
Advanced Guestbook 2.4.4 Cross Site Scripting
18.05.2021
Abdulkadir AYDOGAN
Low
GiveWP WordPress Plugin <= 2.10.3 - Authenticated Persistent XSS
17.05.2021
m0ze
Low
GA Google Analytics WordPress Plugin <= 20210211 - Multiple Authenticated Persistent XSS
17.05.2021
m0ze
Low
Mediumish WordPress Theme <= 1.0.47 - Unauthenticated Reflected XSS & XFS
17.05.2021
m0ze
Low
Listeo WordPress Theme <= 1.6.10 - Multiple XSS & XFS vulnerabilities
17.05.2021
m0ze
Low
Bello WordPress Theme <= 1.5.9 - Unauthenticated Reflected XSS & XFS
17.05.2021
m0ze
Low
WP-DB-Backup WordPress Plugin <= 2.3.3 - Authenticated Persistent XSS
17.05.2021
m0ze
Low
Customer Relationship Management System 1.0 Cross Site Scripting
17.05.2021
Vani K G
Low
Chevereto 3.17.1 Cross Site Scripting
13.05.2021
Akiner Kisa
Low
ERPNext 12.18.0 / 13.0.0 Cross Site Scripting
11.05.2021
Stefan Pietsch
Low
PHP Timeclock 1.04 Cross Site Scripting
10.05.2021
Tyler Butler
High
Xmind 2020 Cross Site Scripting / Code Execution
09.05.2021
Taurus Omar
Low
Markright 1.0 XSS to RCE
09.05.2021
TaurusOmar
Med.
Anote 1.0 Cross Site Scripting / Code Execution
08.05.2021
Taurus Omar
Low
StudyMD 0.3.2 XSS to RCE
07.05.2021
TaurusOmar
Low
Moeditor 0.2.0 Cross Site Scripting / Code Execution
06.05.2021
Taurus Omar
Low
Markright 1.0 Cross Site Scripting / Code Execution
06.05.2021
Taurus Omar
Low
Schlix CMS 2.2.6-6 Cross Site Scripting
06.05.2021
Emircan Bas
Med.
Anote 1.0 XSS to RCE
05.05.2021
TaurusOmar
Low
Adtran Personal Phone Manager 10.8.1 Multiple Reflected Cross-Site Scripting (XSS)
03.05.2021
3ndG4me
Low
Moodle 3.10.3 url Persistent Cross Site Scripting
02.05.2021
UVision
Low
Kirby CMS 3.5.3.1 Cross Site Scripting
30.04.2021
Sreenath Raghunathan
Low
Moodle 3.6.1 Persistent Cross-Site Scripting (XSS)
30.04.2021
farisv
Med.
OX App Suite / OX Guard SSRF / DoS / Cross Site Scripting
30.04.2021
Martin Heiland
Low
PFSense 2.5.0 Cross Site Scripting
29.04.2021
William Costa
Low
Montiorr 1.7.6m Cross Site Scripting
27.04.2021
Ahmad Shakla
Low
Sipwise C5 NGCP CSC Cross Site Scripting
23.04.2021
LiquidWorm
Low
WordPress Plugin RSS for Yandex Turbo 1.29 Stored Cross-Site Scripting (XSS)
23.04.2021
Himamshu Dilip Kulkarn...
Low
BMD BMDWeb 2.0 Cross Site Scripting
23.04.2021
Stefan Viehbock
Low
DzzOffice 2.02.1 Cross Site Scripting
23.04.2021
nu11secur1ty
Low
RemoteClinic 2.0 Multiple Stored Cross-Site Scripting (XSS)
22.04.2021
Saud Ahmad
Low
Adtran Personal Phone Manager 10.8.1 Cross Site Scripting
21.04.2021
3ndG4me
Low
WordPress RSS For Yandex Turbo 1.29 Cross Site Scripting
21.04.2021
Himamshu Dilip Kulkarn...
Low
jQuery 1.0.3 Cross Site Scripting
16.04.2021
Central Infosec
Low
htmly 2.8.0 Cross Site Scripting
16.04.2021
nu11secur1ty
Low
Tileserver-gl 3.0.0 Cross Site Scripting
16.04.2021
Akash Chathoth
High
Webmail Edition 5.2.22 XSS / Remote Code Execution
15.04.2021
nu11secur1ty
Low
jQuery 1.2 Cross Site Scripting
15.04.2021
Central Infosec
Low
Horde Groupware Webmail 5.2.22 Cross Site Scripting
15.04.2021
nu11secur1ty
Low
Atlassian Jira Service Desk 4.9.1 Cross Site Scripting
10.04.2021
Captain_hook
Low
Custom CMS Okezone - Cross-Site Scripting Vulnerabilities
09.04.2021
Gh05t666nero
Low
Simple Traffic Offense System 1.0 Cross Site Scripting
05.04.2021
Richard Jones
Low
Realteo WordPress Plugin <= 1.2.3 - Unauthenticated Reflected XSS
02.04.2021
m0ze
Low
Goto WordPress Theme <= 1.9 - Unauthenticated Reflected XSS
01.04.2021
m0ze
Low
Hotel And Lodge Management System 1.0 Customer Details Stored XSS
01.04.2021
Jitendra Kumar Tripath...
Low
GetSimple CMS Custom JS Plugin 0.1 CSRF to Persistent XSS
31.03.2021
Abhishek Joshi
Low
Budget Management System 1.0 Cross Site Scripting
29.03.2021
Jitendra Kumar Tripath...
Low
Health Center Patient Record Management System 1.0 Cross Site Scripting
29.03.2021
Richard Jones
Low
Equipment Inventory System 1.0 Cross Site Scripting
29.03.2021
Jitendra Kumar Tripath...
Low
Genexis Platinum-4410 P4410-V2-1.31A Cross Site Scripting
27.03.2021
Jithin KS
Low
Regis Inventory And Monitoring System 1.0 Cross Site Scripting
27.03.2021
George Tsimpidas
Low
WordPress GiveWP 2.9.7 Cross Site Scripting
24.03.2021
Austin Bentley
Low
Boonex Dolphin 7.4.2 Cross Site Scripting
19.03.2021
Piyush Patil
Low
VestaCP 0.9.8 Cross Site Scripting
18.03.2021
numan turle
Low
VoIPmonitor WEB GUI 24.55 Cross Site Scripting
16.03.2021
Sandro Gauci


CVEMAP Search Results

CVE
Details
Description
2021-07-26
Low
CVE-2020-23243

Vendor: Naviwebs
Software: Navigatecms
 

 
Cross Site Scripting (XSS) vulnerability in NavigateCMS NavigateCMS 2.9 via the name="wrong_path_redirect" feature.

 
Low
CVE-2020-23242

Vendor: Naviwebs
Software: Navigatecms
 

 
Cross Site Scripting (XSS) vulnerability in NavigateCMS 2.9 when performing a Create or Edit via the Tools feature.

 
Low
CVE-2020-23241

Vendor: Cmsmadesimple
Software: Cms made simple
 

 
Cross Site Scripting (XSS) vulnerability in CMS Made Simple 2.2.14 in "Extra" via 'News > Article" feature.

 
Low
CVE-2020-23240

Vendor: Cmsmadesimple
Software: Cms made simple
 

 
Cross Site Scripting (XSS) vulnerablity in CMS Made Simple 2.2.14 via the Logic field in the Content Manager feature.

 
Low
CVE-2020-23239

Vendor: Textpattern
Software: Textpattern
 

 
Cross Site Scripting (XSS) vulnerability in Textpattern CMS 4.8.1 via Custom fields in the Menu Preferences feature.

 
Low
CVE-2020-23238

Vendor: EVO
Software: Evolution cms
 

 
Cross Site Scripting (XSS) vulnerability in Evolution CMS 2.0.2 via the Document Manager feature.

 
Low
CVE-2020-23234

Vendor: Lavalite
Software: Lavalite
 

 
Cross Site Scripting (XSS) vulnerabiity exists in LavaLite CMS 5.8.0 via the Menu Blocks feature, which can be bypassed by using HTML event handlers, such as "ontoggle,".

 
2021-07-25
Low
CVE-2021-37470

Vendor: Nchsoftware
Software: Webdictate
 

 
In NCH WebDictate v2.13, persistent Cross Site Scripting (XSS) exists in the Recipient Name field. An authenticated user can add or modify the affected field to inject arbitrary JavaScript.

 
Low
CVE-2021-37467

Vendor: Nchsoftware
Software: Quorum
 

 
In NCH Quorum v2.03 and earlier, XSS exists via /conferencebrowseuploadfile?confid= (reflected).

 
Low
CVE-2021-37466

Vendor: Nchsoftware
Software: Quorum
 

 
In NCH Quorum v2.03 and earlier, XSS exists via /conference?id= (reflected).

 

 


Copyright 2021, cxsecurity.com

 

Back to Top