• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-6341

February 26, 2023 by

React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time. That lack of escaping could lead to a cross-site scripting vulnerability. This issue affected minor releases 16.0.x, 16.1.x, 16.2.x, 16.3.x, and 16.4.x. It was fixed in 16.0.1, 16.1.2, 16.2.1, 16.3.3, and 16.4.2.

CVE-2018-6291

February 26, 2023 by

WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1.

CVE-2018-6212

February 26, 2023 by

On D-Link DIR-620 devices with a certain customized (by ISP) variant of firmware 1.0.3, 1.0.37, 1.3.1, 1.3.3, 1.3.7, 1.4.0, and 2.0.22, a reflected Cross-Site Scripting (XSS) attack is possible as a result of missed filtration for special characters in the “Search” field and incorrect processing of the XMLHttpRequest object.

CVE-2018-6226

February 26, 2023 by

Reflected cross-site scripting (XSS) vulnerabilities in two Trend Micro Email Encryption Gateway 5.5 configuration files could allow an attacker to inject client-side scripts into vulnerable systems.

CVE-2018-6227

February 26, 2023 by

A stored cross-site scripting (XSS) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject client-side scripts into vulnerable systems.

CVE-2018-6182

February 26, 2023 by

Mahara 16.10 before 16.10.9 and 17.04 before 17.04.7 and 17.10 before 17.10.4 are vulnerable to bad input when TinyMCE is bypassed by POST packages. Therefore, Mahara should not rely on TinyMCE’s code stripping alone but also clean input on the server / PHP side as one can create own packets of POST data containing bad content with which to hit the server.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 274
  • Go to page 275
  • Go to page 276
  • Go to page 277
  • Go to page 278
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE