• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-16514

February 26, 2023 by

A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-13055.

CVE-2018-16516

February 26, 2023 by

helpers.py in Flask-Admin 1.5.2 has Reflected XSS via a crafted URL.

CVE-2018-16519

February 26, 2023 by

COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting (XSS) via URLs used by “iFrame” widgets.

CVE-2018-16453

February 26, 2023 by

PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar.

CVE-2018-16455

February 26, 2023 by

PHP Scripts Mall Market Place Script 1.0.1 allows XSS via a keyword.

CVE-2018-16456

February 26, 2023 by

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 426
  • Go to page 427
  • Go to page 428
  • Go to page 429
  • Go to page 430
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE