Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-79 Clear
ID Title
CVE-2017-10801 phpSocial (formerly phpDolphin) before 3.0.1 has XSS in the PATH_INFO to the search/tag/ URI.
phpSocial (formerly phpDolphin) before 3.0.1 has XSS in the PATH_INFO to the search/tag/ URI.
CVE-2017-11439 In Sitecore 8.2, there is reflected XSS in the shell/Applications/Tools/Run Program parameter.
In Sitecore 8.2, there is reflected XSS in the shell/Applications/Tools/Run Program parameter.
CVE-2017-11441 Cross-Site Scripting (XSS) in cpanel (CVE-2017-11441)
cross-site scripting in cpanel (CVE-2017-11441). Risk of unauthorized operations or information disclosure.
CVE-2017-5247 Cross-Site Scripting (XSS) in biscom (CVE-2017-5247)
cross-site scripting in biscom (CVE-2017-5247). Risk of unauthorized operations or information disclosure.
CVE-2017-10962 REDCap before 7.5.1 has XSS via the query string.
REDCap before 7.5.1 has XSS via the query string.
CVE-2017-8896 Cross-Site Scripting (XSS) in owncloud (CVE-2017-8896)
cross-site scripting in owncloud (CVE-2017-8896). Risk of unauthorized operations or information disclosure.
CVE-2017-9338 Cross-Site Scripting (XSS) in owncloud (CVE-2017-9338)
cross-site scripting in owncloud (CVE-2017-9338). Risk of unauthorized operations or information disclosure.
CVE-2017-9609 Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-9609)
cross-site scripting in blackcat-cms (CVE-2017-9609). Risk of unauthorized operations or information disclosure.
CVE-2017-9813 Cross-Site Scripting (XSS) in kaspersky (CVE-2017-9813)
cross-site scripting in kaspersky (CVE-2017-9813). Risk of unauthorized operations or information disclosure.
CVE-2017-9934 Cross-Site Scripting (XSS) in csrf (CVE-2017-9934)
cross-site scripting in csrf (CVE-2017-9934). Risk of unauthorized operations or information disclosure.
CVE-2017-11127 Cross-Site Scripting (XSS) in boltcms (CVE-2017-11127)
cross-site scripting in boltcms (CVE-2017-11127). Risk of unauthorized operations or information disclosure.
CVE-2017-11128 Cross-Site Scripting (XSS) in boltcms (CVE-2017-11128)
cross-site scripting in boltcms (CVE-2017-11128). Risk of unauthorized operations or information disclosure.
CVE-2017-8000 Cross-Site Scripting (XSS) in emc (CVE-2017-8000)
cross-site scripting in emc (CVE-2017-8000). Risk of unauthorized operations or information disclosure.
CVE-2017-8005 Cross-Site Scripting (XSS) in emc (CVE-2017-8005)
cross-site scripting in emc (CVE-2017-8005). Risk of unauthorized operations or information disclosure.
CVE-2017-7663 Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.
Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.
CVE-2017-7666 Cross-Site Scripting (XSS) in apache (CVE-2017-7666)
cross-site scripting in apache (CVE-2017-7666). Successful exploitation can lead to full system takeover.
CVE-2017-3102 Cross-Site Scripting (XSS) in adobe (CVE-2017-3102)
cross-site scripting in adobe (CVE-2017-3102). Risk of unauthorized operations or information disclosure.
CVE-2017-3103 Cross-Site Scripting (XSS) in adobe (CVE-2017-3103)
cross-site scripting in adobe (CVE-2017-3103). Risk of unauthorized operations or information disclosure.
CVE-2017-2337 Cross-Site Scripting (XSS) in juniper (CVE-2017-2337)
cross-site scripting in juniper (CVE-2017-2337). Successful exploitation can lead to full system takeover.
CVE-2017-2338 Cross-Site Scripting (XSS) in juniper (CVE-2017-2338)
cross-site scripting in juniper (CVE-2017-2338). Successful exploitation can lead to full system takeover.
CVE-2017-2339 Cross-Site Scripting (XSS) in juniper (CVE-2017-2339)
cross-site scripting in juniper (CVE-2017-2339). Successful exploitation can lead to full system takeover.
CVE-2017-2335 Cross-Site Scripting (XSS) in juniper (CVE-2017-2335)
cross-site scripting in juniper (CVE-2017-2335). Successful exploitation can lead to full system takeover.
CVE-2017-2336 Cross-Site Scripting (XSS) in juniper (CVE-2017-2336)
cross-site scripting in juniper (CVE-2017-2336). Successful exploitation can lead to full system takeover.
CVE-2017-1000065 Cross-Site Scripting (XSS) in openmediavault (CVE-2017-1000065)
cross-site scripting in openmediavault (CVE-2017-1000065). Risk of unauthorized operations or information disclosure.
CVE-2017-1000078 Linux foundation ONOS 1.9 is vulnerable to XSS in the device. registration
Linux foundation ONOS 1.9 is vulnerable to XSS in the device. registration
CVE-2017-1000033 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1000033)
cross-site scripting in wordpress (CVE-2017-1000033). Risk of unauthorized operations or information disclosure.
CVE-2017-1000035 Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack
Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack
CVE-2017-1000038 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1000038)
cross-site scripting in wordpress (CVE-2017-1000038). Risk of unauthorized operations or information disclosure.
CVE-2017-1000042 Cross-Site Scripting (XSS) in mapbox-project (CVE-2017-1000042)
cross-site scripting in mapbox-project (CVE-2017-1000042). Risk of unauthorized operations or information disclosure.
CVE-2017-1000043 Cross-Site Scripting (XSS) in mapbox (CVE-2017-1000043)
cross-site scripting in mapbox (CVE-2017-1000043). Risk of unauthorized operations or information disclosure.
CVE-2017-1000051 Cross-Site Scripting (XSS) in xwiki (CVE-2017-1000051)
cross-site scripting in xwiki (CVE-2017-1000051). Risk of unauthorized operations or information disclosure.
CVE-2017-1000054 Cross-Site Scripting (XSS) in rocketchat (CVE-2017-1000054)
cross-site scripting in rocketchat (CVE-2017-1000054). Risk of unauthorized operations or information disclosure.
CVE-2017-1000058 Cross-Site Scripting (XSS) in chevereto (CVE-2017-1000058)
cross-site scripting in chevereto (CVE-2017-1000058). Risk of unauthorized operations or information disclosure.
CVE-2017-1000059 Cross-Site Scripting (XSS) in livehelperchat (CVE-2017-1000059)
cross-site scripting in livehelperchat (CVE-2017-1000059). Risk of unauthorized operations or information disclosure.
CVE-2017-1000063 Cross-Site Scripting (XSS) in kitto-project (CVE-2017-1000063)
cross-site scripting in kitto-project (CVE-2017-1000063). Risk of unauthorized operations or information disclosure.
CVE-2017-1000005 Cross-Site Scripting (XSS) in phpminiadmin-project (CVE-2017-1000005)
cross-site scripting in phpminiadmin-project (CVE-2017-1000005). Risk of unauthorized operations or information disclosure.
CVE-2017-1000006 Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
CVE-2017-1000011 Cross-Site Scripting (XSS) in mywebsql (CVE-2017-1000011)
cross-site scripting in mywebsql (CVE-2017-1000011). Risk of unauthorized operations or information disclosure.
CVE-2017-1000012 Cross-Site Scripting (XSS) in mysqldumper (CVE-2017-1000012)
cross-site scripting in mysqldumper (CVE-2017-1000012). Risk of unauthorized operations or information disclosure.
CVE-2017-1000015 Cross-Site Scripting (XSS) in phpmyadmin (CVE-2017-1000015)
cross-site scripting in phpmyadmin (CVE-2017-1000015). Risk of unauthorized operations or information disclosure.
CVE-2017-1000023 Cross-Site Scripting (XSS) in logicaldoc (CVE-2017-1000023)
cross-site scripting in logicaldoc (CVE-2017-1000023). Risk of unauthorized operations or information disclosure.
CVE-2017-1000032 Cross-Site Scripting (XSS) in cacti (CVE-2017-1000032)
cross-site scripting in cacti (CVE-2017-1000032). Risk of unauthorized operations or information disclosure.
CVE-2016-6019 Cross-Site Scripting (XSS) in ibm (CVE-2016-6019)
cross-site scripting in ibm (CVE-2016-6019). Risk of unauthorized operations or information disclosure.
CVE-2016-8952 Cross-Site Scripting (XSS) in ibm (CVE-2016-8952)
cross-site scripting in ibm (CVE-2016-8952). Risk of unauthorized operations or information disclosure.
CVE-2017-11198 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11198)
cross-site scripting in finecms-project (CVE-2017-11198). Risk of unauthorized operations or information disclosure.
CVE-2017-11201 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11201)
cross-site scripting in finecms-project (CVE-2017-11201). Risk of unauthorized operations or information disclosure.
CVE-2017-11202 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11202)
cross-site scripting in finecms-project (CVE-2017-11202). Risk of unauthorized operations or information disclosure.
CVE-2017-11194 Cross-Site Scripting (XSS) in pulsesecure (CVE-2017-11194)
cross-site scripting in pulsesecure (CVE-2017-11194). Risk of unauthorized operations or information disclosure.
CVE-2017-11195 Cross-Site Scripting (XSS) in pulsesecure (CVE-2017-11195)
cross-site scripting in pulsesecure (CVE-2017-11195). Risk of unauthorized operations or information disclosure.
CVE-2016-6114 Cross-Site Scripting (XSS) in ibm (CVE-2016-6114)
cross-site scripting in ibm (CVE-2016-6114). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →