• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-5672

February 26, 2023 by

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label] parameter.

CVE-2018-5681

February 26, 2023 by

PrestaShop 1.7.2.4 has XSS via source-code editing on the “Pages > Edit page” screen.

CVE-2018-5687

February 26, 2023 by

NewsBee allows XSS via the Company Name field in the Settings under admin/admin.php.

CVE-2018-5688

February 26, 2023 by

ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component.

CVE-2018-5689

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in admin/auth.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the malicious user’s email.

CVE-2018-5690

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in admin/users.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the nb parameter (aka the page limit number).

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 280
  • Go to page 281
  • Go to page 282
  • Go to page 283
  • Go to page 284
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE