• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-15875

February 26, 2023 by

Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router’s admin UPnP page via the description field in an AddPortMapping UPnP SOAP request.

CVE-2018-15880

February 26, 2023 by

An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack.

CVE-2018-15884

February 26, 2023 by

RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.

CVE-2018-15891

February 26, 2023 by

An issue was discovered in FreePBX core before 3.0.122.43, 14.0.18.34, and 5.0.1beta4. By crafting a request for adding Asterisk modules, an attacker is able to store JavaScript commands in a module name.

CVE-2018-15896

February 26, 2023 by

PHP Scripts Mall Website Seller Script 2.0.5 has XSS via Personal Address or Company Name.

CVE-2018-15899

February 26, 2023 by

An issue was discovered in MiniCMS 1.10. There is a post.php?date= XSS vulnerability.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 441
  • Go to page 442
  • Go to page 443
  • Go to page 444
  • Go to page 445
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE