• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-19921

February 26, 2023 by

Zoho ManageEngine OpManager 12.3 before 123237 has XSS in the domain controller.

CVE-2018-19922

February 26, 2023 by

Persistent Cross-Site Scripting (XSS) in the advancedsetup_websiteblocking.html Website Blocking page of the Actiontec C1000A router with firmware through CAC004-31.30L.95 allows a remote attacker to inject arbitrary HTML into the Website Blocking page by inserting arbitrary HTML into the ‘TodUrlAdd’ URL parameter in a /urlfilter.cmd POST request.

CVE-2018-19924

February 26, 2023 by

An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. An email address can be modified in between the request for a validation code and the entry of the validation code, leading to storage of an XSS payload contained in the modified address.

CVE-2018-19844

February 26, 2023 by

FROG CMS 0.9.5 has XSS via the admin/?/snippet/add name parameter, which is mishandled during an edit action, a related issue to CVE-2018-10319.

CVE-2018-19845

February 26, 2023 by

There is Stored XSS in GetSimple CMS 3.3.12 via the admin/edit.php “post-menu” parameter, a related issue to CVE-2018-16325.

CVE-2018-19849

February 26, 2023 by

An issue was discovered in YzmCMS 5.2. XSS exists via the admin/content/search.html searinfo parameter.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 341
  • Go to page 342
  • Go to page 343
  • Go to page 344
  • Go to page 345
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE