Export limit exceeded: 348488 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (348488 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-19819 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Rights.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19818 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Contacts.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19817 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/AdminAuthorisationFrame.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19816 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/categorytree/ChooseCategory.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19815 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/UserPopupAddNewProp.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19814 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscriptions.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19813 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscribers.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19812 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SubFolderPackages.jsp" has reflected XSS via the GroupId parameter. | ||||
| CVE-2018-19811 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Import.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19810 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/GroupMove.jsp" has reflected XSS via the ConnPoolName, GroupId, or type parameter. | ||||
| CVE-2018-19809 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/GroupCopy.jsp" has reflected XSS via the ConnPoolName, GroupId, or type parameter. | ||||
| CVE-2018-19802 | 1 Aubio | 1 Aubio | 2024-11-21 | N/A |
| aubio v0.4.0 to v0.4.8 has a new_aubio_onset NULL pointer dereference. | ||||
| CVE-2018-19801 | 1 Aubio | 1 Aubio | 2024-11-21 | N/A |
| aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters. | ||||
| CVE-2018-19800 | 1 Aubio | 1 Aubio | 2024-11-21 | N/A |
| aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo. | ||||
| CVE-2018-19799 | 1 Dolibarr | 1 Dolibarr | 2024-11-21 | N/A |
| Dolibarr ERP/CRM through 8.0.3 has /exports/export.php?datatoexport= XSS. | ||||
| CVE-2018-19798 | 1 Fleetco | 1 Fleet Maintenance Management | 2024-11-21 | 8.8 High |
| Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uploading an arbitrary ".php" file with the application/x-php Content-Type to the accidents_add.php?submit=1 URI, as demonstrated by the value_Images_1 field, which leads to remote command execution on the remote server. Any authenticated user can exploit this. | ||||
| CVE-2018-19797 | 1 Sass-lang | 1 Libsass | 2024-11-21 | N/A |
| In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp (used by ast.cpp and ast_selectors.cpp) may cause a Denial of Service (application crash) via a crafted sass input file. | ||||
| CVE-2018-19796 | 1 Ninjaforms | 1 Ninja Forms | 2024-11-21 | N/A |
| An open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers to redirect a user via the lib/StepProcessing/step-processing.php (aka submissions download page) redirect parameter. | ||||
| CVE-2018-19795 | 1 Chipsbank | 1 Umptool | 2024-11-21 | N/A |
| ChipsBank UMPTool saves the password to the NAND with a simple substitution cipher, which allows attackers to get full access when having physical access to the device. | ||||
| CVE-2018-19794 | 1 Internet2 | 1 Grouper | 2024-11-21 | N/A |
| Cross-site scripting (XSS) vulnerability in UiV2Public.index in Internet2 Grouper 2.2 and 2.3 allows remote attackers to inject arbitrary web script or HTML via the code parameter. | ||||