• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-21030

February 26, 2023 by

Jupyter Notebook before 5.5.0 does not use a CSP header to treat served files as belonging to a separate origin. Thus, for example, an XSS payload can be placed in an SVG document.

CVE-2018-20963

February 26, 2023 by

The contact-form-to-email plugin before 1.2.66 for WordPress has XSS.

CVE-2018-20965

February 26, 2023 by

The ultimate-member plugin before 2.0.4 for WordPress has XSS.

CVE-2018-20966

February 26, 2023 by

The woocommerce-jetpack plugin before 3.8.0 for WordPress has XSS in the Products Per Page feature.

CVE-2018-20970

February 26, 2023 by

The pdf-print plugin before 2.0.3 for WordPress has multiple XSS issues.

CVE-2018-20975

February 26, 2023 by

Fat Free CRM before 0.18.1 has XSS in the tags_helper in app/helpers/tags_helper.rb.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 308
  • Go to page 309
  • Go to page 310
  • Go to page 311
  • Go to page 312
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE