• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-16407

February 26, 2023 by

An issue was discovered in Mayan EDMS before 3.0.3. The Tags app has XSS because tag label values are mishandled.

CVE-2018-1643

February 26, 2023 by

The Installation Verification Tool of IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 144588

CVE-2018-16450

February 26, 2023 by

CraftedWeb through 2013-09-24 has reflected XSS via the p parameter.

CVE-2018-16371

February 26, 2023 by

PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: g=Team&m=User&a=index&keyword=, g=Team&m=User_group&a=index&keyword=, g=Team&m=Department&a=index&keyword=, and g=Team&m=Bulletin&a=index&keyword=.

CVE-2018-16372

February 26, 2023 by

The issue was discovered in IdeaCMS through 2016-04-30. There is reflected XSS via the index.php?c=content&a=search kw parameter. NOTE: this product is discontinued.

CVE-2018-16374

February 26, 2023 by

Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 428
  • Go to page 429
  • Go to page 430
  • Go to page 431
  • Go to page 432
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE