• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-1967

February 26, 2023 by

IBM Security Identity Manager 6.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153748.

CVE-2018-19693

February 26, 2023 by

An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.

CVE-2018-19694

February 26, 2023 by

HMS Industrial Networks Netbiter WS100 3.30.5 devices and previous have reflected XSS in the login form.

CVE-2018-19599

February 26, 2023 by

Monstra CMS 1.6 allows XSS via an uploaded SVG document to the admin/index.php?id=filesmanager&path=uploads/ URI. NOTE: this is a discontinued product.

CVE-2018-19600

February 26, 2023 by

Rhymix CMS 1.9.8.1 allows XSS via an index.php?module=admin&act=dispModuleAdminFileBox SVG upload.

CVE-2018-19614

February 26, 2023 by

XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 350
  • Go to page 351
  • Go to page 352
  • Go to page 353
  • Go to page 354
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE