• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-7652

February 26, 2023 by

lib/Zonemaster/GUI/Dancer/Export.pm in Zonemaster Web GUI before 1.0.11 has XSS.

CVE-2018-7653

February 26, 2023 by

In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter.

CVE-2018-7543

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in installer/build/view.step4.php of the SnapCreek Duplicator plugin 1.2.32 for WordPress allows remote attackers to inject arbitrary JavaScript or HTML via the json parameter.

CVE-2018-7547

February 26, 2023 by

lyadmin 1.x has XSS via the config[WEB_SITE_TITLE] parameter to the /admin.php?s=/admin/config/groupsave.html URI.

CVE-2018-7563

February 26, 2023 by

An issue was discovered in GLPI through 9.2.1. The application is affected by XSS in the query string to front/preference.php. An attacker is able to create a malicious URL that, if opened by an authenticated user with debug privilege, will execute JavaScript code supplied by the attacker. The attacker-supplied code can perform a wide variety of actions, such as stealing the victim’s session token or login credentials, performing arbitrary actions on the victim’s behalf, and logging their keystrokes.

CVE-2018-7564

February 26, 2023 by

Stored XSS exists on Polycom QDX 6000 devices.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 255
  • Go to page 256
  • Go to page 257
  • Go to page 258
  • Go to page 259
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE