• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-18260

February 26, 2023 by

In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.

CVE-2018-18261

February 26, 2023 by

In waimai Super Cms 20150505, there is an XSS vulnerability via the /admin.php/Foodcat/addsave fcname parameter.

CVE-2018-18262

February 26, 2023 by

Zoho ManageEngine OpManager 12.3 before build 123214 has XSS.

CVE-2018-1827

February 26, 2023 by

IBM Rational Collaborative Lifecycle Management 6.0 through 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150430.

CVE-2018-18270

February 26, 2023 by

XSS exists in CMS Made Simple version 2.2.7 via the m1_news_url parameter in an admin/moduleinterface.php “Content–>News–>Add Article” action.

CVE-2018-18271

February 26, 2023 by

XSS exists in CMS Made Simple version 2.2.7 via the m1_extra parameter in an admin/moduleinterface.php “Content–>News–>Add Article” action.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 386
  • Go to page 387
  • Go to page 388
  • Go to page 389
  • Go to page 390
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE