Total
39597 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2019-20645 | 1 Netgear | 2 Rax40, Rax40 Firmware | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS. | |||||
| CVE-2019-20644 | 1 Netgear | 2 Rax40, Rax40 Firmware | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS. | |||||
| CVE-2019-20639 | 1 Netgear | 6 Rbk50, Rbk50 Firmware, Rbr50 and 3 more | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30. | |||||
| CVE-2019-20528 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter. | |||||
| CVE-2019-20527 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp serverURL parameter. | |||||
| CVE-2019-20526 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp password parameter. | |||||
| CVE-2019-20525 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter. | |||||
| CVE-2019-20524 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter. | |||||
| CVE-2019-20523 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter. | |||||
| CVE-2019-20522 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter. | |||||
| CVE-2019-20521 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/ URI. | |||||
| CVE-2019-20520 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI. | |||||
| CVE-2019-20519 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address. | |||||
| CVE-2019-20518 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI. | |||||
| CVE-2019-20517 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI. | |||||
| CVE-2019-20516 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI. | |||||
| CVE-2019-20515 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI. | |||||
| CVE-2019-20514 | 1 Frappe | 1 Erpnext | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the address/ URI. | |||||
| CVE-2019-20513 | 1 Edx | 1 Open Edx | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Open edX Ironwood.1 allows support/certificates?user= reflected XSS. | |||||
| CVE-2019-20512 | 1 Open.edx | 1 Ironwood | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Open edX Ironwood.1 allows support/certificates?course_id= reflected XSS. | |||||