• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-15570

February 26, 2023 by

In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.

CVE-2018-15574

February 26, 2023 by

** DISPUTED ** An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST. NOTE: the vendor has stated “We do not consider this a vulnerability.”

CVE-2018-15510

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in the ‘Certificate’ feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML.

CVE-2018-15511

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in the ‘Notification template’ feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML.

CVE-2018-15512

February 26, 2023 by

Cross-site scripting (XSS) vulnerability in the ‘Authorisation Service’ feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML.

CVE-2018-15528

February 26, 2023 by

Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the “select_sso()” function. The payload is triggered when the victim opens a prepared /ux/jss-sso/arslogin?[XSS] link and then clicks the “Login” button.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 451
  • Go to page 452
  • Go to page 453
  • Go to page 454
  • Go to page 455
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE