Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-79
Total 35377 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15315 1 F5 13 Big-ip Access Policy Manager, Big-ip Advanced Firewall Manager, Big-ip Analytics and 10 more 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page.
CVE-2018-15314 1 F5 1 Big-ip Advanced Firewall Manager 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.
CVE-2018-15313 1 F5 1 Big-ip Advanced Firewall Manager 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page.
CVE-2018-15312 1 F5 13 Big-ip Access Policy Manager, Big-ip Advanced Firewall Manager, Big-ip Analytics and 10 more 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user.
CVE-2018-15199 1 Auracms 1 Auracms 2024-11-21 3.5 LOW 5.4 MEDIUM
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
CVE-2018-15190 1 Hotel Booking Script Project 1 Hotel Booking Script 2024-11-21 3.5 LOW 5.4 MEDIUM
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
CVE-2018-15189 1 Advanced Real Estate Script Project 1 Advanced Real Estate Script 2024-11-21 3.5 LOW 5.4 MEDIUM
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
CVE-2018-15184 1 Naukri Clone Script Project 1 Naukri Clone Script 2024-11-21 3.5 LOW 5.4 MEDIUM
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
CVE-2018-15183 1 Myperfectresume \/ Jobhero \/ Resume Clone Script Project 1 Myperfectresume \/ Jobhero \/ Resume Clone Script 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields.
CVE-2018-15182 1 Car Rental Script Project 1 Car Rental Script 2024-11-21 3.5 LOW 5.4 MEDIUM
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
CVE-2018-15181 1 Jio 2 4g Hotspot M2s, 4g Hotspot M2s Firmware 2024-11-21 6.8 MEDIUM 6.5 MEDIUM
JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields.
CVE-2018-15169 1 Zohocorp 1 Manageengine Applications Manager 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote attackers to inject arbitrary web script or HTML via the /deleteMO.do method parameter.
CVE-2018-15130 1 Thinksaas 1 Thinksaas 2024-11-21 3.5 LOW 5.4 MEDIUM
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
CVE-2018-15129 1 Thinksaas 1 Thinksaas 2024-11-21 3.5 LOW 5.4 MEDIUM
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
CVE-2018-14977 1 Q-cms 1 Qcms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070.
CVE-2018-14976 1 Q-cms 1 Qcms 2024-11-21 3.5 LOW 4.8 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
CVE-2018-14975 1 Q-cms 1 Qcms 2024-11-21 3.5 LOW 4.8 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
CVE-2018-14974 1 Q-cms 1 Qcms 2024-11-21 3.5 LOW 4.8 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
CVE-2018-14973 1 Q-cms 1 Qcms 2024-11-21 3.5 LOW 4.8 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
CVE-2018-14972 1 Q-cms 1 Qcms 2024-11-21 3.5 LOW 4.8 MEDIUM
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.