Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cross-site scripting vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2018-19752
DomainMOD up to and including 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
Domainmod Domainmod
383
VMScore
CVE-2020-28350
A Cross Site Scripting (XSS) vulnerability exists in OPAC in Sokrates SOWA SowaSQL up to and including 5.6.1 via the sowacgi.php typ parameter.
Sokrates Sowasql
355
VMScore
CVE-2017-3131
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 up to and including 5.4.4 and 5.6.0 allows malicious users to execute unauthorized code or commands via the filter input in "Applications" under FortiView.
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.4
1 EDB exploit
435
VMScore
CVE-2017-3132
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to Execute unauthorized code or commands via the action input during the activation of a FortiToken.
Fortinet Fortios
1 EDB exploit
435
VMScore
CVE-2017-3133
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN.
Fortinet Fortios
1 EDB exploit
355
VMScore
CVE-2018-11403
DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter.
Domainmod Domainmod 4.09.03
1 EDB exploit
435
VMScore
CVE-2018-11404
DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter.
Domainmod Domainmod 4.09.03
1 EDB exploit
685
VMScore
CVE-2006-4593
Cross-site scripting (XSS) vulnerability in index.php in SoftBB 0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Softbb Softbb 0.1
1 EDB exploit
NA
CVE-2023-36163
Cross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote malicious user to execute arbitrary code via a crafted script to the mc parameter of the URL.
Buildagate Project Buildagate 5
1 EDB exploit
1 Github repository
435
VMScore
CVE-2013-0807
Cross-site scripting (XSS) vulnerability in the NewSectionPrompt function in include/tool/editing_page.php in gpEasy CMS 3.5.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the section parameter in a new_section action to index.php...
Gpeasy Gpeasy Cms 1.6.3
Gpeasy Gpeasy Cms 2.3.1
Gpeasy Gpeasy Cms 2.2
Gpeasy Gpeasy Cms 1.5
Gpeasy Gpeasy Cms 3.0
Gpeasy Gpeasy Cms 3.0.1
Gpeasy Gpeasy Cms 2.0.1
Gpeasy Gpeasy Cms 2.3.2
Gpeasy Gpeasy Cms 2.4
Gpeasy Gpeasy Cms 3.5.1
Gpeasy Gpeasy Cms
Gpeasy Gpeasy Cms 2.3.3
Gpeasy Gpeasy Cms 1.6
Gpeasy Gpeasy Cms 2.1
Gpeasy Gpeasy Cms 2.3
Gpeasy Gpeasy Cms 3.0.2
Gpeasy Gpeasy Cms 3.0.3
Gpeasy Gpeasy Cms 1.6.1
Gpeasy Gpeasy Cms 3.5
Gpeasy Gpeasy Cms 3.0.5
Gpeasy Gpeasy Cms 3.0.4
Gpeasy Gpeasy Cms 1.6.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »