• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2022-3127

February 23, 2023 by godfreyd94

Cross-site Scripting (XSS) – Stored in GitHub repository jgraph/drawio prior to 20.2.8.

CVE-2022-3128

February 23, 2023 by godfreyd94

The Donation Thermometer WordPress plugin before 2.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

CVE-2022-31290

February 23, 2023 by godfreyd94

A cross-site scripting (XSS) vulnerability in Known v1.2.2+2020061101 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Your Name text field.

CVE-2022-31298

February 23, 2023 by godfreyd94

A cross-site scripting vulnerability in the ads comment section of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.

CVE-2022-31299

February 23, 2023 by godfreyd94

Haraj v3.7 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the User Upgrade Form.

CVE-2022-31300

February 23, 2023 by godfreyd94

A cross-site scripting vulnerability in the DM Section component of Haraj v3.7 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 1933
  • Go to page 1934
  • Go to page 1935
  • Go to page 1936
  • Go to page 1937
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE