• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-12611

February 26, 2023 by

OX App Suite 7.8.4 and earlier allows Directory Traversal.

CVE-2018-12622

February 26, 2023 by

An issue was discovered in Eventum 3.5.0. htdocs/ajax/update.php has XSS via the field_name parameter.

CVE-2018-12623

February 26, 2023 by

An issue was discovered in Eventum 3.5.0. htdocs/switch.php has XSS via the current_page parameter.

CVE-2018-12624

February 26, 2023 by

An issue was discovered in Eventum 3.5.0. /htdocs/post_note.php has XSS via the garlic_prefix parameter.

CVE-2018-1255

February 26, 2023 by

RSA Identity Lifecycle and Governance versions 7.0.1, 7.0.2 and 7.1.0 contains a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser.

CVE-2018-12580

February 26, 2023 by

library/DBTech/Security/Action/Sessions.php in DragonByte vBSecurity 3.x through 3.3.0 for vBulletin 3 and vBulletin 4 allows self-XSS via $session[‘user_agent’] in the “Login Sessions” feature.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 497
  • Go to page 498
  • Go to page 499
  • Go to page 500
  • Go to page 501
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE