CWE:
 

Tytuł
Data
Autor
Low
Snapforce CRM 8.3.0 Cross Site Scripting
23.08.2019
Prasad Lingamaiah
Low
Endian Firewall 3.3.0 Cross Site Scripting
23.08.2019
G0dfather
Low
Neo Billing 3.5 Cross Site Scripting
20.08.2019
n1x_
Low
Kimai 2 Cross Site Scripting
20.08.2019
osamaalaa
Low
National Aeronautics and Space Administration Robotics Alliance Project Reflected XSS Cross Site Scripting
20.08.2019
KingSkrupellos
Low
Open-Xchange OX App Suite Content Spoofing / Cross Site Scripting
17.08.2019
Martin Heiland
Low
Open-Xchange OX Guard Cross Site Scripting / Signature Validation
17.08.2019
Hanno Boeck
Low
BSI Advance Hotel Booking System 2.0 Cross Site Scripting
13.08.2019
Angelo Ruwantha
Low
WebKit Universal Cross Site Scripting
13.08.2019
Google Security Resear...
High
WebKit UXSS via XSLT and Nested Document Replacements
13.08.2019
Google
Low
UNA 10.0.0 RC1 Cross Site Scripting
12.08.2019
Greg Priest
Low
osTicket 1.12 Cross Site Scripting
12.08.2019
Aishwarya Iyer
High
osTicket 1.12 File Upload Cross Site Scripting
12.08.2019
Aishwarya Iyer
Low
Open-School 3.0 / Community Edition 2.3 Cross Site Scripting
09.08.2019
Greg Priest
Low
MapProxy 1.11.0 Cross Site Scripting
08.08.2019
Janek Vind aka waraxe
Low
Netrox SC Live Chat Software for websites Reflected XSS Injection
05.08.2019
m0ze
Low
1CRM On-Premise Software 8.5.7 Cross Site Scripting
03.08.2019
Kusol Watchara-Apanuko...
Low
Ultimate Loan Manager 2.0 Cross Site Scripting
02.08.2019
Metin Yunus Kandemir
Med.
D-Link 6600-AP XSS / DoS / Information Disclosure
01.08.2019
Sandstorm Security
Low
GigToDo - Freelance Marketplace Script v1.3 Reflected & Persistent XSS Injections
29.07.2019
m0ze
Low
Zurmo 3.2.6 Persistent Cross Site Scripting
28.07.2019
Daniel Bishtawi
Low
Zurmo 3.2.6 Reflected Cross Site Scripting
27.07.2019
Daniel Bishtawi
Low
Wind Tre S.P.A mobile operator is Vulnerable to Cross Site Scripting Attack
24.07.2019
wind.it
Low
Real Estate 7 - Real Estate WordPress Theme v2.8.9 Persistent XSS Injection
24.07.2019
m0ze
Low
MyT Project Management 1.5.1 User[username] Persistent Cross-Site Scripting
24.07.2019
Metin Yunus Kandemir (...
Low
Coming Soon Page & Maintenance Mode v1.8.0 Unauthenticated Persistent XSS Injection
23.07.2019
m0ze
Low
REDCap Cross Site Scripting
20.07.2019
Dylan Garnaud
Low
WordPress OneSignal 1.17.5 Cross Site Scripting
19.07.2019
LiquidWorm
Low
Oracle Siebel CRM 19.0 Cross Site Scripting
18.07.2019
Sarath Nair
Low
Sitecore 9.0 Rev 171002 Cross Site Scripting
13.07.2019
Owais Mehtab
Med.
Jenkins Dependency Graph View 0.13 Cross Site Scripting
12.07.2019
Ishaq Mohammed
Low
phpFK lite-version Cross Site Scripting
11.07.2019
Daniel Bishtawi
Low
Karenderia CMS 5.3 Cross Site Scripting
09.07.2019
Sisyshell
Low
FaceSentry Access Control System 6.4.8 Reflected Cross Site Scripting
02.07.2019
LiquidWorm
Low
SquirrelMail 1.4.22 Cross Site Scripting
01.07.2019
Moritz Bechler
Med.
Carpool Web App 1.0 Cross Site Scripting / SQL Injection
01.07.2019
Taurus Omar
Low
SeedDMS out.GroupMgr.php Cross Site Scripting
25.06.2019
Nimit Jain
Low
Ajans Otuz9 Cross Site Scripting
19.06.2019
KingSkrupellos
Low
Lacivert Ajans Cross Site Scripting
19.06.2019
KingSkrupellos
Low
Saynet Bilgisayar Cross Site Scripting
19.06.2019
KingSkrupellos
Low
Sahi Pro 8.x Cross Site Scripting
19.06.2019
Goutham Madhwaraj
Low
Liferay Portal 7.1 CE GA4 Cross Site Scripting
13.06.2019
Valerio Brussani
Med.
RedGreenBD IT Solutions XSS Reflected Cross Site Scripting
04.06.2019
KingSkrupellos
Low
pfSense 2.4.4-p3 Cross Site Scripting
30.05.2019
Chi Tran
Low
Kanboard 1.2.7 Cross Site Scripting
30.05.2019
Mithat Gogebakan
Low
Phraseanet DAM Cross Site Scripting
29.05.2019
Krzysztof Szulski
Low
East Technologies XSS Reflected Cross Site Scripting
28.05.2019
KingSkrupellos
Low
SOCA Access Control System 180612 Cross Site Scripting
14.05.2019
LiquidWorm
Med.
Prinect Archive System 2015 Release 2.6 Cross Site Scripting
07.05.2019
Alt3kx
Low
Dragon 5.0 / 5.1 Cross Site Scripting
06.05.2019
Josh Sheppard
Low
Zotonic 0.46 mod_admin Cross Site Scripting
04.05.2019
Ramon Janssen
Low
HumHub 1.3.12 Cross Site Scripting
01.05.2019
Kagan Eglence
Low
Apache Archiva 2.2.3 Cross Site Scripting
01.05.2019
Martin S
Low
Apache Pluto 3.0.0 / 3.0.1 Cross Site Scripting
28.04.2019
Mishra Dhiraj
Low
Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting
28.04.2019
Cisco Talos
Low
JioFi 4G M2S 1.0.2 Cross Site Scripting
26.04.2019
Vikas Chaudhary
Med.
osTicket 1.11 Cross Site Scripting / Local File Inclusion
26.04.2019
Ozkan Mustafa Akkus
Low
WordPress Download Manager 2.9.93 Cross Site Scripting
18.04.2019
ThuraMoeMyint
Low
Zyxel ZyWall Cross Site Scripting
17.04.2019
Aaron Bishop
Low
Seo Panel Newsletter 1.2.0 Cross Site Scripting
17.04.2019
Deyaa Muhammad
Med.
Nagios XI 5.5.10 XSS / Remote Code Execution
15.04.2019
Abdel Adim Oisfi
Med.
DirectAdmin 1.561 Cross Site Scripting
14.04.2019
Numan OZDEMIR
Low
D-Link DI-524 2.06RU Cross Site Scripting
11.04.2019
Semen Alexandrovich Ly...
Med.
ShoreTel Connect ONSITE Cross Site Scripting / Session Fixation
09.04.2019
Ramikan
Low
CentOS Web Panel 0.9.8.789 Cross Site Scripting
31.03.2019
DKM
Low
Apache CouchDB 2.3.1 Cross Site Request Forgery / Cross Site Scripting
25.03.2019
Ozer Goker
Low
MyBB Upcoming Events 1.32 Cross Site Scripting
20.03.2019
0xB9
Low
Gila CMS 1.9.1 Cross Site Scripting
20.03.2019
Ahmet Umit Bayram
Low
Vembu Storegrid Web Interface 4.4.0 Cross Site Scripting / Information Disclosure
16.03.2019
Gionathan Reale
Low
ntopng 3.8.190307 Community Edition Cross Site Scripting
14.03.2019
Ozer Goker
Low
pfSense 2.4.4-p1 (HAProxy Package 0.59_14) Cross Site Scripting
14.03.2019
Gionathan Reale
Low
OrientDB 3.0.17 GA Community Edition XSS / CSRF
08.03.2019
Ozer Goker
Low
ClearOS 7 Community Edition Cross Site Scripting
07.03.2019
Ozer Goker
Med.
Bold CMS 3.6.4 Cross Site Scripting
05.03.2019
Ismail Tasdelen
Low
SAP J2EE Engine/7.01/Fiori test2 Cross Site Scripting
05.03.2019
Ece Orsel
Low
SAP J2EE Engine/7.01/Portal/EPP Protocol Cross Site Scripting
05.03.2019
Ece Orsel
Low
Ability Mail Server 4.2.6 Cross Site Scripting
05.03.2019
Aloyce J. Makalanga
Low
Fiberhome AN5506-04-F RP2669 Cross Site Scripting
05.03.2019
Tauco
Low
Craft CMS 3.1.12 Pro Cross Site Scripting
05.03.2019
Ismail Tasdelen
Low
Mailtraq WebMail 2.17.7.3550 Cross Site Scripting
05.03.2019
Aloyce J. Makalanga
Med.
DomainMOD 4.11.01 Custom SSL Fields Cross Site Scripting
03.03.2019
Mohammed Abdul Raheem
Low
PRTG Network Monitor 7.1.3.3378 Cross Site Scripting
03.03.2019
Rafael Pedrero
Low
Zentyal Server Development Edition 6.0 Cross Site Scripting
28.02.2019
Ozer Goker
Low
DomainMOD 4.11.01 Owner Name Cross Site Scripting
28.02.2019
Mohammed Abdul Raheem
Low
vBulletin 4.2.0 ChangUonDyU Chatbox Plugins 3.6.0 Cross Site Scripting
26.02.2019
KingSkrupellos
Low
MyBB 1.6.x ChangUonDyU Chatbox Plugins 3.6.0 Cross Site Scripting
26.02.2019
KingSkrupellos
Low
Tautulli 2.1.26 Cross Site Scripting
23.02.2019
Geeknik Labs
Low
Medical Store Script 3.0.3 Cross Site Scripting
22.02.2019
Mr Winst0n
Low
VertrigoServ 2.17 Cross Site Scripting
22.02.2019
Rafael Pedrero
Low
HotelDruid 2.3 Cross Site Scripting
21.02.2019
Mehmet Emiroglu
Low
Tech News 4.3.4 Cross Site Scripting
21.02.2019
Mr Winst0n
Med.
XAMPP 5.6.8 Cross Site Scripting / SQL Injection
20.02.2019
Rafael Pedrero
Low
ArangoDB Community Edition 3.4.2-1 Cross Site Scripting
19.02.2019
Ozer Goker
Low
Apache CouchDB 2.3.0 Cross Site Scripting
19.02.2019
Ozer Goker
Low
qdPM 9.1 Cross Site Scripting
19.02.2019
Mehmet Emiroglu
Low
Comodo Dome Firewall 2.7.0 Cross Site Scripting
19.02.2019
Ozer Goker
Low
X-Cart shopping cart software V5 (Cross site scripting)
18.02.2019
Ramkumar Ganesan
Low
MyBB Trash Bin 1.1.3 Cross Site Request Forgery / Cross Site Scripting
18.02.2019
0xB9
Low
JobFinder Cross Site Scripting
17.02.2019
Deyaa Muhammad
Low
WeHelp 1.6 Cross Site Scripting
17.02.2019
Deyaa Muhammad


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2019-08-22
Low
CVE-2008-7321

Updating...
 

 
The tubepress plugin before 1.6.5 for WordPress has XSS.

 
Low
CVE-2017-18576

Updating...
 

 
The event-notifier plugin before 1.2.1 for WordPress has XSS via the loading animation.

 
Low
CVE-2017-18577

Vendor: Ibericode
Software: Mailchimp
 

 
The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg.

 
Low
CVE-2017-18581

Updating...
 

 
The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list.

 
Low
CVE-2014-10392

Updating...
 

 
The cforms2 plugin before 10.2 for WordPress has XSS.

 
Low
CVE-2014-10393

Updating...
 

 
The cforms2 plugin before 10.5 for WordPress has XSS.

 
Low
CVE-2017-18578

Vendor: Crafty social buttons project
Software: Crafty socia...
 

 
The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS.

 
Low
CVE-2018-20986

Updating...
 

 
The advanced-custom-fields plugin before 5.7.8 for WordPress has XSS by authors.

 
Low
CVE-2019-15327

Vendor: Codection
Software: Import users...
 

 
The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data.

 
Low
CVE-2019-15328

Vendor: Codection
Software: Import users...
 

 
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top