• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-1820

February 26, 2023 by

IBM WebSphere Portal 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 150096.

CVE-2018-18208

February 26, 2023 by

Virtualmin 6.03 allows XSS via the query string, as demonstrated by the webmin_search.cgi URI.

CVE-2018-18209

February 26, 2023 by

XSS exists in DiliCMS 2.4.0 via the admin/index.php/setting/site?tab=site_attachment attachment_type parameter.

CVE-2018-18029

February 26, 2023 by

Navigate CMS has Stored XSS via the navigate.php Title field in an edit action.

CVE-2018-18035

February 26, 2023 by

A vulnerability in flashcanvas.swf in OpenEMR before 5.0.1 Patch 6 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.

CVE-2018-18062

February 26, 2023 by

An issue was discovered in dialog.php in tecrail Responsive FileManager 9.8.1. A reflected XSS vulnerability allows remote attackers to inject arbitrary web script or HTML.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 391
  • Go to page 392
  • Go to page 393
  • Go to page 394
  • Go to page 395
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE