• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2018-11245

February 26, 2023 by

app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes.

CVE-2018-11198

February 26, 2023 by

An issue was discovered in Mautic 2.13.1. There is Stored XSS via the authorUrl field in config.json.

CVE-2018-11200

February 26, 2023 by

An issue was discovered in Mautic 2.13.1. It has Stored XSS via the company name field.

CVE-2018-11208

February 26, 2023 by

** DISPUTED ** An issue was discovered in Z-BlogPHP 2.0.0. There is a persistent XSS that allows remote attackers to inject arbitrary web script or HTML into background web site settings via the “copyright information office” field. NOTE: the vendor indicates that the product was not intended to block this type of XSS by a user with the admin privilege.

CVE-2018-11223

February 26, 2023 by

XSS in Artica Pandora FMS before 7.0 NG 723 allows an attacker to execute arbitrary code via a crafted “refr” parameter in a “/pandora_console/index.php?sec=estado&sec2=operation/agentes/estado_agente&refr=” call.

CVE-2018-11227

February 26, 2023 by

Monstra CMS 3.0.4 and earlier has XSS via index.php.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 517
  • Go to page 518
  • Go to page 519
  • Go to page 520
  • Go to page 521
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE