CWE:
 

Topic
Date
Author
Low
Inout SiteSearch 2.0.1 Cross Site Scripting
15.08.2022
CraCkEr
High
Windows sxssrv!BaseSrvActivationContextCacheDuplicateUnicodeString Heap Buffer Overflow
14.08.2022
Google Security Resear...
Low
Fiberhome AN5506-02-B Cross Site Scripting
12.08.2022
Leonardo Goncalves
Low
Intelbras ATA 200 Cross Site Scripting
12.08.2022
Leonardo Goncalves
Low
WordPress Testimonial Slider And Showcase 2.2.6 Cross Site Scripting
06.08.2022
yunaranyancat
Low
WordPress WP-UserOnline 2.87.6 Cross Site Scripting
03.08.2022
Steffin Stanly
Low
Wavlink WN533A8 Cross Site Scripting
02.08.2022
Ahmed Alroky
Low
Transposh WordPress Translation 1.0.7 Cross Site Scripting
01.08.2022
Julien Ahrens
Med.
WordPress Plugin WP-UserOnline 2.87.6 Stored Cross-Site Scripting (XSS)
01.08.2022
Steffin Stanly
Low
Loan Management System 1.0 Cross Site Scripting
29.07.2022
saitamang
Low
Magnolia CMS 6.2.19 Cross Site Scripting
10.07.2022
Giulio Garzia
Low
EQS Integrity Line Cross Site Scripting / Information Disclosure
06.07.2022
Giovanni Pellerano
Low
Paymoney 3.3 Cross Site Scripting
04.07.2022
nu11secur1ty
Low
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting
02.07.2022
Rick Verdoes
Low
WSO2 Management Console Cross Site Scripting
28.06.2022
cxosmo
Low
Mailhog 1.0.1 Stored Cross-Site Scripting (XSS)
28.06.2022
Vulnz
Med.
SIEMENS-SINEMA Remote Connect 3.0.1.0-01.01.00.02 Cross Site Scripting
22.06.2022
Steffen Robertz
Low
SAP Fiori Launchpad Cross Site Scripting
22.06.2022
Yvan Genuer
Low
SAP FRUN 2.00 / 3.00 Cross Site Scripting
22.06.2022
Yvan Genuer
Low
WordPress Download Manager 3.2.43 Cross Site Scripting
22.06.2022
Andrea Bocchetti
Med.
JM-DATA ONU JF511-TV 1.0.67 / 1.0.62 / 1.0.55 XSS / CSRF / Open Redirect
20.06.2022
Neurogenesia
Low
SolarView Compact 6.00 Cross Site Scripting
20.06.2022
Ahmed Alroky
High
Gentics CMS 5.36.29 Cross Site Scripting / Deserialization
20.06.2022
Gerhard Hechenberger
Low
SolarView Compact 6.00 pow Cross-Site Scripting (XSS)
17.06.2022
Ahmed Alroky
Low
WordPress Download Manager 3.2.42 Cross Site Scripting
11.06.2022
Rafie Muhammad
Med.
Product Show Room Site 1.0 Cross Site Scripting
05.06.2022
webraybtl
Low
Contao 4.13.2 Cross Site Scripting
04.06.2022
Chetanya Sharma
Low
Fast Food Ordering System 1.0 Cross Site Scripting
31.05.2022
Ashish Kumar
Low
PHPIPAM 1.4.4 Cross Site Request Forgery / Cross Site Scripting
22.05.2022
Rodolfo Tavares
Low
LiquidFiles 3.4.15 Cross Site Scripting
22.05.2022
Rodolfo Tavares
Low
Survey Sparrow Enterprise Survey Software 2022 Cross Site Scripting
19.05.2022
Pankaj Kumar Thakur
Low
Emby Media Server 4.7.0.60 Cross Site Scripting
19.05.2022
Yehia Elghaly
Low
T-Soft E-Commerce 4 Cross Site Scripting
17.05.2022
Alperen Ergel
Low
Cyclos 4.14.7 groupId DOM Based Cross-Site Scripting (XSS)
17.05.2022
Tin Pham
Low
Showdoc 2.10.3 Stored Cross-Site Scripting (XSS)
17.05.2022
Akshay Ravi
High
e107 CMS 3.2.1 Arbitrary File Upload / Cross Site Scripting
11.05.2022
Hubert Wojciechowski
Low
WordPress Stafflist 3.1.2 Cross Site Scripting
03.05.2022
Hassan Khan Yusufzai
Low
Gitlab 14.9 Cross Site Scripting
26.04.2022
stacksmashing
Low
WordPress Coru LFMember 1.0.2 Cross Site Scripting
26.04.2022
Mariam Tariq
Low
WordPress WP-Invoice 4.3.1 Cross Site Scripting
26.04.2022
Mariam Tariq
Low
WordPress Videos Sync PDF 1.7.4 Cross Site Scripting
24.04.2022
UnD3sc0n0c1d0
Low
WordPress Popup Maker 1.16.5 Cross Site Scripting
24.04.2022
Roel van Beurden
Low
PKP Open Journals System 3.3 Cross Site Scripting
19.04.2022
Hemant Kashyap
Low
Delta Controls enteliTOUCH 3.40.3935 Cross Site Scripting
17.04.2022
LiquidWorm
Low
ICT Protege GX/WX 2.08 Stored Cross-Site Scripting (XSS)
11.04.2022
LiquidWorm
Low
WordPress Anti-Malware Security And Brute-Force Firewall Cross Site Scripting
11.04.2022
Taurus Omar
Low
AeroCMS 0.0.1 Cross Site Scripting
08.04.2022
D4rkP0w4r
Low
Reprise License Manager 14.2 Cross Site Scripting / Information Disclosure
08.04.2022
Giulia Melotti Garibal...
Low
Social Codia SMS 1 Cross Site Scripting
08.04.2022
D4rkP0w4r
Low
minewebcms 1.15.2 Cross Site Scripting
07.04.2022
Chetanya Sharma
Low
Opmon 9.11 Cross Site Scripting
07.04.2022
p3tryx
Low
WordPress CleanTalk 5.173 Cross Site Scripting
01.04.2022
Ramuel Gall
Low
WordPress Uleak Security Dashboard 1.2.3 Cross Site Scripting
01.04.2022
Hassan Khan Yusufzai
Low
Message System 1.0 Cross Site Scripting
31.03.2022
Hejap Zairy
Low
WordPress Easy Cookie Policy 1.6.2 Cross Site Scripting
30.03.2022
0xB9
Low
WordPress Donorbox-Donation-Form 7.1.6 Cross Site Scripting
30.03.2022
Hassan Khan Yusufzai
Low
WordPress Clipr 1.2.3 Cross Site Scripting
30.03.2022
Hassan Khan Yusufzai
Low
SAP Knowledge Warehouse 7.50 / 7.40 / 7.31 / 7.30 Cross Site Scripting
24.03.2022
Julien Ahrens
Low
WordPress Akismet Spam Protection 4.2.2 Cross Site Scripting
24.03.2022
Milad Karimi
Low
Drupal Avatar Upload 7.x-1.0-beta8 Cross Site Scripting
24.03.2022
Milad Karimi
Med.
OX App Suite 7.10.5 Cross Site Scripting
22.03.2022
Martin Heiland
Low
ICT Protege GX/WX 2.08 Cross Site Scripting
22.03.2022
LiquidWorm
Low
Simple Mobile Comparison Website 1.0 Cross Site Scripting
18.03.2022
Ayedh AlQahtani
Low
BuilderTorCTPHPRAT.b Cross Site Scripting
17.03.2022
malvuln
Low
DEOS AG OPEN 710/810 Cross Site Scripting
10.03.2022
n4pst3r
Low
Zyxel ZyWALL 2 Plus Cross Site Scripting
04.03.2022
Momen Eldawakhly
Low
Cipi Control Panel 3.1.15 Cross Site Scripting
03.03.2022
Fikrat Ghuliev
Low
WordPress Photoswipe Masonry Gallery 1.2.14 Cross Site Scripting
26.02.2022
Chloe Chamberland
Low
Network Video Recorder NVR304-16EP Reflected Cross-Site Scripting (XSS) (Unauthenticated)
23.02.2022
Luis Martinez
Low
WordPress 99robots Header Footer Code Manager 1.1.16 Cross Site Scripting
22.02.2022
Ramuel Gall
Low
Agirhnet 1.0 Cross Site Scripting
22.02.2022
Daniel Martinez Adan
Med.
Car Portal Template Cross Site Scripting
20.02.2022
Vulnerability Laborato...
Low
Fortinet Fortimail 7.0.1 Cross Site Scripting
20.02.2022
Braiant Giraldo Villa
Low
WordPress Cozmoslabs Profile Builder 3.6.1 Cross Site Scripting
17.02.2022
Chloe Chamberland
High
Zyxel Buffer Overflow / File Disclosure / CSRF / XSS / Broken Access Control
17.02.2022
Stefan Viehbock
Low
MartFury Marketplace Cross Site Scripting
17.02.2022
Vulnerability Laborato...
Low
Network Video Recorder NVR304-16EP Cross Site Scripting
16.02.2022
Luis Martinez
Low
WordPress Plugin Post Grid 2.1.1 Cross Site Scripting (XSS)
14.02.2022
0xB9
Low
WordPress Plugin CP Blocks 1.0.14 Stored Cross Site Scripting (XSS)
09.02.2022
Shweta Mahajan
Low
WordPress Plugin Product Slider for WooCommerce 1.13.21 Cross Site Scripting (XSS)
08.02.2022
0xB9
Low
WordPress CP Blocks 1.0.14 Cross Site Scripting
08.02.2022
Shweta Mahajan
Low
WordPress Security Audit 1.0.0 Cross Site Scripting
08.02.2022
Shweta Mahajan
Med.
Shopmetrics Mystery Shopping Software Broken Access Control / XSS
07.02.2022
A. Vodyasov
Low
WordPress IP2Location Country Blocker 2.26.7 Cross Site Scripting
07.02.2022
Ahmet Serkan Ari
Low
Rocket LMS 1.1 Persistent Cross Site Scripting (XSS)
07.02.2022
Vulnerability-Lab
Med.
WordPress International SMS For Contact Form 7 Integration 1.2 XSS
07.02.2022
Milad Karimi
Low
WordPress Post Grid 2.1.1 Cross Site Scripting
04.02.2022
0xB9
Low
WordPress Product Slider For WooCommerce 1.13.21 Cross Site Scripting
03.02.2022
0xB9
Med.
Online Project Time Management System 1.0 Multiple Stored Cross Site Scripting (XSS) (Authenticated)
02.02.2022
Felipe Alcantara
High
SAP Enterprise Portal RunContentCreation Cross Site Scripting
28.01.2022
Yvan Genuer
Low
SAP Enterprise Portal NavigationReporter Cross Site Scripting
27.01.2022
Yvan Genuer
Med.
WordPress Mortgage Calculators WP 1.52 Cross Site Scripting
27.01.2022
Ceylan Bozogullarindan
Low
uBidAuction 2.0.1 Cross Site Scripting
26.01.2022
Vulnerability Laborato...
Low
Ametys CMS 4.4.1 Cross Site Scripting
26.01.2022
Vulnerability Laborato...
Low
WebACMS 2.1.0 Cross Site Scripting
26.01.2022
Patrick Hener
Low
Banco Guayaquil 8.0.0 Cross Site Scripting
21.01.2022
Taurus Omar
Low
AgentTesla Builder Web Panel Cross Site Scripting
17.01.2022
malvuln
Low
Ab Stealer Web Panel Cross Site Scripting
17.01.2022
malvuln
Low
HTTP Commander 3.1.9 Cross Site Scripting
15.01.2022
Oscar Sanden
Low
Online Diagnostic Lab Management System 1.0 Cross Site Scripting
15.01.2022
Himash


CVEMAP Search Results

CVE
Details
Description
2022-08-17
Waiting for details
CVE-2022-2871

Updating...
 

 
Cross-site Scripting (XSS) - Stored in GitHub repository notrinos/notrinoserp prior to 0.7.

 
2022-08-16
Waiting for details
CVE-2022-2844

Updating...
 

 
A vulnerability classified as problematic has been found in MotoPress Timetable and Event Schedule up to 1.4.06. This affects an unknown part of the file /wp/?cpmvc_id=1&cpmvc_do_action=mvparse&f=datafeed&calid=1&month_index=1&method=adddetails&id=2 of the component Calendar Handler. The manipulation of the argument Subject/Location/Description leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-206487.

 
Waiting for details
CVE-2022-2843

Updating...
 

 
A vulnerability was found in MotoPress Timetable and Event Schedule. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /wp-admin/admin-ajax.php of the component Quick Edit. The manipulation of the argument post_title with the input <img src=x onerror=alert`2`> leads to cross site scripting. The attack may be launched remotely. VDB-206486 is the identifier assigned to this vulnerability.

 
Waiting for details
CVE-2022-34258

Updating...
 

 

 
Waiting for details
CVE-2022-34257

Updating...
 

 

 
2022-08-15
Waiting for details
CVE-2022-2814

Updating...
 

 
A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /mkshope/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206401 was assigned to this vulnerability.

 
Waiting for details
CVE-2022-2811

Updating...
 

 
A vulnerability classified as problematic has been found in SourceCodester Guest Management System. This affects an unknown part of the file myform.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206397 was assigned to this vulnerability.

 
Waiting for details
CVE-2022-2384

Updating...
 

 
The Digital Publications by Supsystic WordPress plugin before 1.7.4 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

 
Waiting for details
CVE-2022-2378

Updating...
 

 
The Easy Student Results WordPress plugin through 2.2.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting

 
Waiting for details
CVE-2022-2152

Updating...
 

 
The Duplicate Page and Post Plugin WordPress plugin through 2.7 does not sanitise and escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top