Export limit exceeded: 336643 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 44039 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (44039 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-14972 | 1 Q-cms | 1 Qcms | 2024-11-21 | N/A |
| An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS. | ||||
| CVE-2018-14971 | 1 Q-cms | 1 Qcms | 2024-11-21 | N/A |
| An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS. | ||||
| CVE-2018-14970 | 1 Q-cms | 1 Qcms | 2024-11-21 | N/A |
| An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS. | ||||
| CVE-2018-14969 | 1 Q-cms | 1 Qcms | 2024-11-21 | N/A |
| An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS. | ||||
| CVE-2018-14964 | 1 Emlsoft Project | 1 Emlsoft | 2024-11-21 | N/A |
| An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page. | ||||
| CVE-2018-14962 | 1 Zzcms | 1 Zzcms | 2024-11-21 | N/A |
| zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php. | ||||
| CVE-2018-14955 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via SVG animations (animate to attribute). | ||||
| CVE-2018-14954 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute. | ||||
| CVE-2018-14953 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via a "<math xlink:href=" attack. | ||||
| CVE-2018-14952 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via a "<math><maction xlink:href=" attack. | ||||
| CVE-2018-14951 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via a "<form action='data:text" attack. | ||||
| CVE-2018-14950 | 1 Squirrelmail | 1 Squirrelmail | 2024-11-21 | N/A |
| The mail message display page in SquirrelMail through 1.4.22 has XSS via a "<svg><a xlink:href=" attack. | ||||
| CVE-2018-14943 | 1 Harmonicinc | 2 Nsg 9000, Nsg 9000 Firmware | 2024-11-21 | N/A |
| Harmonic NSG 9000 devices have a default password of nsgadmin for the admin account, a default password of nsgguest for the guest account, and a default password of nsgconfig for the config account. | ||||
| CVE-2018-14937 | 1 Mylittleforum | 1 My Little Forum | 2024-11-21 | N/A |
| The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field. | ||||
| CVE-2018-14936 | 1 Mylittleforum | 1 My Little Forum | 2024-11-21 | N/A |
| The Add page option in my little forum 2.4.12 allows XSS via the Title field. | ||||
| CVE-2018-14935 | 1 Polycom | 2 Trio 8500, Trio 8500 Firmware | 2024-11-21 | N/A |
| The Web administration console on Polycom Trio devices with software before 5.5.4 has XSS. | ||||
| CVE-2018-14929 | 1 Matera | 1 Banco | 2024-11-21 | N/A |
| Matera Banco 1.0.0 is vulnerable to multiple reflected XSS, as demonstrated by the /contingency/web/index.jsp (aka home page) url parameter. | ||||
| CVE-2018-14924 | 1 Matera | 1 Banco | 2024-11-21 | N/A |
| Matera Banco 1.0.0 is vulnerable to multiple stored XSS, as demonstrated by the sca/privilegio/consultarUsuario.jsf "Nome Completo" (aka user fullname) field. | ||||
| CVE-2018-14922 | 1 Monstra | 1 Monstra | 2024-11-21 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Monstra CMS 3.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) first name or (2) last name field in the edit profile page. | ||||
| CVE-2018-14919 | 1 Loytec | 2 Lgate-902, Lgate-902 Firmware | 2024-11-21 | N/A |
| LOYTEC LGATE-902 6.3.2 devices allow XSS. | ||||