• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-1728

February 26, 2023 by

IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 147707.

CVE-2018-17288

February 26, 2023 by

Kofax Front Office Server version 4.1.1.11.0.5212 (both Thin Client and Administration Console) suffers from multiple authenticated stored XSS vulnerabilities via the (1) “Filename” field in /Kofax/KFS/ThinClient/document/upload/ – (Thin Client) or (2) “DeviceName” field in /Kofax/KFS/Admin/DeviceService/device/ – (Administration Console).

CVE-2018-17300

February 26, 2023 by

Stored XSS exists in CuppaCMS through 2018-09-03 via an administrator/#/component/table_manager/view/cu_menus section name.

CVE-2018-17301

February 26, 2023 by

Reflected XSS exists in client/res/templates/global-search/name-field.tpl in EspoCRM 5.3.6 via /#Account in the search panel.

CVE-2018-17302

February 26, 2023 by

Stored XSS exists in views/fields/wysiwyg.js in EspoCRM 5.3.6 via a /#Email/view saved draft message.

CVE-2018-17218

February 26, 2023 by

An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 407
  • Go to page 408
  • Go to page 409
  • Go to page 410
  • Go to page 411
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE