• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-20372

February 26, 2023 by

TP-Link TD-W8961ND devices allow XSS via the hostname of a DHCP client.

CVE-2018-20373

February 26, 2023 by

Tenda ADSL modem routers 1.0.1 allow XSS via the hostname of a DHCP client.

CVE-2018-20322

February 26, 2023 by

LimeSurvey version 3.15.5 contains a Cross-site scripting (XSS) vulnerability in Survey Resource zip upload, resulting in Javascript code execution against LimeSurvey administrators. Fixed in version 3.15.6.

CVE-2018-20326

February 26, 2023 by

ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have XSS via the cgi-bin/webproc?getpage=html/index.html var:subpage parameter.

CVE-2018-20327

February 26, 2023 by

Chamilo LMS version 1.11.8 contains XSS in main/template/default/admin/gradebook_list.tpl in the gradebook dependencies tool, allowing authenticated users to affect other users, under specific conditions of permissions granted by administrators. This is considered “low risk” due to the nature of the feature it exploits.

CVE-2018-20328

February 26, 2023 by

Chamilo LMS version 1.11.8 contains XSS in main/social/group_view.php in the social groups tool, allowing authenticated users to affect other users, under specific conditions of permissions granted by administrators. This is considered “low risk” due to the nature of the feature it exploits.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 329
  • Go to page 330
  • Go to page 331
  • Go to page 332
  • Go to page 333
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE