• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-19579

February 26, 2023 by

GitLab EE version 11.5 is vulnerable to a persistent XSS vulnerability in the Operations page. This is fixed in 11.5.1.

CVE-2018-19596

February 26, 2023 by

Zurmo 3.2.4 allows HTML Injection via an admin’s use of HTML in the report section, a related issue to CVE-2018-19506.

CVE-2018-19597

February 26, 2023 by

CMS Made Simple 2.2.8 allows XSS via an uploaded SVG document, a related issue to CVE-2017-16798.

CVE-2018-19598

February 26, 2023 by

Statamic 2.10.3 allows XSS via First Name or Last Name to the /users URI in an ‘Add new user’ request.

CVE-2018-19525

February 26, 2023 by

An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. There is CSRF via /ui/?g=obj_keywords_add and /ui/?g=obj_keywords_addsave with resultant XSS because of a lack of csrf token validation.

CVE-2018-19527

February 26, 2023 by

i4 assistant 7.85 allows XSS via a crafted machine name field within iOS settings.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 352
  • Go to page 353
  • Go to page 354
  • Go to page 355
  • Go to page 356
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE