Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-79 Clear
ID Title
CVE-2016-8789 Cross-Site Scripting (XSS) in huawei (CVE-2016-8789)
cross-site scripting in huawei (CVE-2016-8789). Risk of unauthorized operations or information disclosure.
CVE-2017-2475 Cross-Site Scripting (XSS) in apple (CVE-2017-2475)
cross-site scripting in apple (CVE-2017-2475). Risk of unauthorized operations or information disclosure.
CVE-2017-2445 Cross-Site Scripting (XSS) in apple (CVE-2017-2445)
cross-site scripting in apple (CVE-2017-2445). Risk of unauthorized operations or information disclosure.
CVE-2017-2393 Cross-Site Scripting (XSS) in apple (CVE-2017-2393)
cross-site scripting in apple (CVE-2017-2393). Risk of unauthorized operations or information disclosure.
CVE-2017-7388 Cross-Site Scripting (XSS) in wallaceit (CVE-2017-7388)
cross-site scripting in wallaceit (CVE-2017-7388). Risk of unauthorized operations or information disclosure.
CVE-2017-7389 Cross-Site Scripting (XSS) in openeclass (CVE-2017-7389)
cross-site scripting in openeclass (CVE-2017-7389). Risk of unauthorized operations or information disclosure.
CVE-2017-7390 Cross-Site Scripting (XSS) in socialnetwork-project (CVE-2017-7390)
cross-site scripting in socialnetwork-project (CVE-2017-7390). Risk of unauthorized operations or information disclosure.
CVE-2017-7391 Cross-Site Scripting (XSS) in magmi-project (CVE-2017-7391)
cross-site scripting in magmi-project (CVE-2017-7391). Risk of unauthorized operations or information disclosure.
CVE-2017-7386 Cross-Site Scripting (XSS) in symetrie-project (CVE-2017-7386)
cross-site scripting in symetrie-project (CVE-2017-7386). Risk of unauthorized operations or information disclosure.
CVE-2017-7387 Cross-Site Scripting (XSS) in helpmewatchwho-project (CVE-2017-7387)
cross-site scripting in helpmewatchwho-project (CVE-2017-7387). Risk of unauthorized operations or information disclosure.
CVE-2016-6022 Cross-Site Scripting (XSS) in ibm (CVE-2016-6022)
cross-site scripting in ibm (CVE-2016-6022). Risk of unauthorized operations or information disclosure.
CVE-2016-6031 Cross-Site Scripting (XSS) in ibm (CVE-2016-6031)
cross-site scripting in ibm (CVE-2016-6031). Risk of unauthorized operations or information disclosure.
CVE-2016-6036 Cross-Site Scripting (XSS) in ibm (CVE-2016-6036)
cross-site scripting in ibm (CVE-2016-6036). Risk of unauthorized operations or information disclosure.
CVE-2016-8935 Cross-Site Scripting (XSS) in ibm (CVE-2016-8935)
cross-site scripting in ibm (CVE-2016-8935). Risk of unauthorized operations or information disclosure.
CVE-2016-9990 Cross-Site Scripting (XSS) in ibm (CVE-2016-9990)
cross-site scripting in ibm (CVE-2016-9990). Risk of unauthorized operations or information disclosure.
CVE-2016-6209 Cross-site scripting (XSS) vulnerability in Nagios.
Cross-site scripting (XSS) vulnerability in Nagios.
CVE-2017-6973 Cross-Site Scripting (XSS) in mantisbt (CVE-2017-6973)
cross-site scripting in mantisbt (CVE-2017-6973). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.8` or later.
CVE-2017-7241 Cross-Site Scripting (XSS) in mantisbt (CVE-2017-7241)
cross-site scripting in mantisbt (CVE-2017-7241). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.9` or later.
CVE-2017-7309 Cross-Site Scripting (XSS) in mantisbt (CVE-2017-7309)
cross-site scripting in mantisbt (CVE-2017-7309). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.9` or later.
CVE-2017-7359 Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack.
CVE-2017-7360 Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack.
CVE-2017-7361 Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.
CVE-2017-7362 Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.
CVE-2017-7363 Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.
CVE-2017-7320 Cross-Site Scripting (XSS) in dos (CVE-2017-7320)
cross-site scripting in dos (CVE-2017-7320). Risk of unauthorized operations or information disclosure.
CVE-2016-6846 Cross-Site Scripting (XSS) in open-xchange (CVE-2016-6846)
cross-site scripting in open-xchange (CVE-2016-6846). Risk of unauthorized operations or information disclosure.
CVE-2017-5900 Cross-Site Scripting (XSS) in netcomm (CVE-2017-5900)
cross-site scripting in netcomm (CVE-2017-5900). Risk of unauthorized operations or information disclosure.
CVE-2017-7298 Cross-Site Scripting (XSS) in moodle (CVE-2017-7298)
cross-site scripting in moodle (CVE-2017-7298). Risk of unauthorized operations or information disclosure.
CVE-2017-6864 Cross-Site Scripting (XSS) in siemens (CVE-2017-6864)
cross-site scripting in siemens (CVE-2017-6864). Risk of unauthorized operations or information disclosure.
CVE-2017-2687 Cross-Site Scripting (XSS) in siemens (CVE-2017-2687)
cross-site scripting in siemens (CVE-2017-2687). Risk of unauthorized operations or information disclosure.
CVE-2016-9465 Cross-Site Scripting (XSS) in nextcloud (CVE-2016-9465)
cross-site scripting in nextcloud (CVE-2016-9465). Risk of unauthorized operations or information disclosure.
CVE-2016-9466 Cross-Site Scripting (XSS) in nextcloud (CVE-2016-9466)
cross-site scripting in nextcloud (CVE-2016-9466). Risk of unauthorized operations or information disclosure.
CVE-2016-9470 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9470)
cross-site scripting in revive-adserver (CVE-2016-9470). Successful exploitation can lead to full system takeover.
CVE-2016-9472 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9472)
cross-site scripting in revive-adserver (CVE-2016-9472). Risk of unauthorized operations or information disclosure.
CVE-2016-9473 Vulnerability in brave (CVE-2016-9473)
vulnerability in brave (CVE-2016-9473). Risk of unauthorized operations or information disclosure.
CVE-2016-9126 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9126)
cross-site scripting in revive-adserver (CVE-2016-9126). Risk of unauthorized operations or information disclosure.
CVE-2016-9128 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9128)
cross-site scripting in revive-adserver (CVE-2016-9128). Risk of unauthorized operations or information disclosure.
CVE-2016-9130 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9130)
cross-site scripting in revive-adserver (CVE-2016-9130). Risk of unauthorized operations or information disclosure.
CVE-2016-9454 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9454)
cross-site scripting in revive-adserver (CVE-2016-9454). Risk of unauthorized operations or information disclosure.
CVE-2016-9457 Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9457)
cross-site scripting in revive-adserver (CVE-2016-9457). Risk of unauthorized operations or information disclosure.
CVE-2016-9459 Vulnerability in nextcloud (CVE-2016-9459)
vulnerability in nextcloud (CVE-2016-9459). Risk of unauthorized operations or information disclosure.
CVE-2016-6056 Cross-Site Scripting (XSS) in ibm (CVE-2016-6056)
cross-site scripting in ibm (CVE-2016-6056). Risk of unauthorized operations or information disclosure.
CVE-2016-9737 Cross-Site Scripting (XSS) in ibm (CVE-2016-9737)
cross-site scripting in ibm (CVE-2016-9737). Risk of unauthorized operations or information disclosure.
CVE-2017-1120 Cross-Site Scripting (XSS) in ibm (CVE-2017-1120)
cross-site scripting in ibm (CVE-2017-1120). Risk of unauthorized operations or information disclosure.
CVE-2015-8010 Cross-Site Scripting (XSS) in icinga (CVE-2015-8010)
cross-site scripting in icinga (CVE-2015-8010). Risk of unauthorized operations or information disclosure.
CVE-2017-7271 Cross-Site Scripting (XSS) in yii-software (CVE-2017-7271)
cross-site scripting in yii-software (CVE-2017-7271). Risk of unauthorized operations or information disclosure.
CVE-2015-8310 Cross-Site Scripting (XSS) in cherrymusic (CVE-2015-8310)
cross-site scripting in cherrymusic (CVE-2015-8310). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `62dec34a1ea0741400dd6b6c660d303dcd651e86, 0.36.0` or later.
CVE-2017-6878 Cross-Site Scripting (XSS) in metinfo (CVE-2017-6878)
cross-site scripting in metinfo (CVE-2017-6878). Risk of unauthorized operations or information disclosure.
CVE-2017-6003 Cross-Site Scripting (XSS) in dotcms (CVE-2017-6003)
cross-site scripting in dotcms (CVE-2017-6003). Risk of unauthorized operations or information disclosure.
CVE-2017-6067 Symphony 2.6.9 has XSS in publish/notes/edit/##/saved/ via the bottom form field.
Symphony 2.6.9 has XSS in publish/notes/edit/##/saved/ via the bottom form field.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →