• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2022-27545

February 23, 2023 by godfreyd94

BigFix Web Reports authorized users may perform HTML injection for the email administrative configuration page.

CVE-2022-27546

February 23, 2023 by godfreyd94

HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability caused by improper validation of user-supplied input supplied with a form POST request. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim’s web browser within the security context of the hosting web site and/or steal the victim’s cookie-based authentication credentials.

CVE-2022-27561

February 23, 2023 by godfreyd94

There is a reflected Cross-Site Scripting vulnerability in the HCL Traveler web admin (LotusTraveler.nsf).

CVE-2022-27436

February 23, 2023 by godfreyd94

A cross-site scripting (XSS) vulnerability in /public/admin/index.php?add_user at Ecommerce-Website v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username text field.

CVE-2022-27441

February 23, 2023 by godfreyd94

A stored cross-site scripting (XSS) vulnerability in TPCMS v3.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Phone text box.

CVE-2022-27462

February 23, 2023 by godfreyd94

Cross Site Scripting (XSS) vulnerability in objects/function.php in function getDeviceID in WWBN AVideo through 11.6, via the yptDevice parameter to view/include/head.php.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 1994
  • Go to page 1995
  • Go to page 1996
  • Go to page 1997
  • Go to page 1998
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE