• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-15847

February 26, 2023 by

An issue was discovered in puppyCMS 5.1. There is an XSS vulnerability via menu.php in the “Add Page/URL” URL link field.

CVE-2018-1585

February 26, 2023 by

IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 143498.

CVE-2018-15874

February 26, 2023 by

Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the “Status -> Active Client Table” page via the hostname field in a DHCP request.

CVE-2018-15820

February 26, 2023 by

EasyIO EasyIO-30P devices before 2.0.5.27 allow XSS via the dev.htm GDN parameter.

CVE-2018-15713

February 26, 2023 by

Nagios XI 5.5.6 allows persistent cross site scripting from remote authenticated attackers via the stored email address in admin/users.php.

CVE-2018-15714

February 26, 2023 by

Nagios XI 5.5.6 allows reflected cross site scripting from remote unauthenticated attackers via the oname and oname2 parameters.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 443
  • Go to page 444
  • Go to page 445
  • Go to page 446
  • Go to page 447
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE