• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-1761

February 26, 2023 by

IBM Rational Team Concert 5.0 through 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 148615.

CVE-2018-17533

February 26, 2023 by

Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross-site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.

CVE-2018-17556

February 26, 2023 by

MODX Revolution v2.6.5-pl allows stored XSS via a Create New Media Source action.

CVE-2018-17560

February 26, 2023 by

The admin interface of the Grouptime Teamwire Client 1.5.1 prior to 1.9.0 on-premises messenger server allows stored XSS. All backend versions prior to prod-2018-11-13-15-00-42 are affected.

CVE-2018-17571

February 26, 2023 by

Vanilla before 2.6.1 allows XSS via the email field of a profile.

CVE-2018-17572

February 26, 2023 by

InfluxDB 0.9.5 has Reflected XSS in the Write Data module.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 402
  • Go to page 403
  • Go to page 404
  • Go to page 405
  • Go to page 406
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE