• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2020-35761

February 26, 2023 by

bloofoxCMS 0.5.2.1 is infected with XSS that allows remote attackers to execute arbitrary JS/HTML Code.

CVE-2020-35704

February 26, 2023 by

Daybyday 2.1.0 allows stored XSS via the Title parameter to the New Lead screen.

CVE-2020-35705

February 26, 2023 by

Daybyday 2.1.0 allows stored XSS via the Name parameter to the New User screen.

CVE-2020-35706

February 26, 2023 by

Daybyday 2.1.0 allows stored XSS via the Title parameter to the New Project screen.

CVE-2020-35707

February 26, 2023 by

Daybyday 2.1.0 allows stored XSS via the Company Name parameter to the New Client screen.

CVE-2020-35717

February 26, 2023 by

zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true).

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 688
  • Go to page 689
  • Go to page 690
  • Go to page 691
  • Go to page 692
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE