Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-20781
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. ...
Cisco Asyncos
5.4
CVSSv3
CVE-2024-20251
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to perform a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability exists...
Cisco Identity Services Engine 1.4\\(0.253\\)
Cisco Identity Services Engine 2.0\\(0.169\\)
Cisco Identity Services Engine 1.3\\(120.135\\)
Cisco Identity Services Engine 2.0\\(0.222\\)
Cisco Identity Services Engine 2.1\\(102.101\\)
Cisco Identity Services Engine 2.1\\(0.800\\)
Cisco Identity Services Engine 2.1\\(0.474\\)
Cisco Identity Services Engine 1.4\\(0.181\\)
Cisco Identity Services Engine 1.4\\(0.908\\)
Cisco Identity Services Engine 1.2\\(1.199\\)
Cisco Identity Services Engine 2.2\\(0.283\\)
Cisco Identity Services Engine 2.0\\(0.147\\)
Cisco Identity Services Engine 1.3\\(106.146\\)
Cisco Identity Services Engine 1.3\\(0.876\\)
Cisco Identity Services Engine 2.3\\(0.151\\)
Cisco Identity Services Engine 2.0\\(1.130\\)
Cisco Identity Services Engine 1.4\\(0.109\\)
Cisco Identity Services Engine 1.3\\(0.722\\)
Cisco Identity Services Engine 1.3\\(0.909\\)
Cisco Identity Services Engine 1.4
Cisco Identity Services Engine 2.0
Cisco Identity Services Engine 2.0.1
5.4
CVSSv3
CVE-2020-3185
A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to ...
Cisco Telepresence Management Suite
5.4
CVSSv3
CVE-2019-1777
A vulnerability in the web-based interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against another user of the service. The vulnerability is due to insufficient validation of user-...
Cisco Registered Envelope Service 5.3.4-027
NA
CVE-2020-3420
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at...
5.4
CVSSv3
CVE-2018-0367
A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The vuln...
Cisco Registered Envelope Service 5.3.1
Cisco Registered Envelope Service 5.0
Cisco Registered Envelope Service 5.3
Cisco Registered Envelope Service 5.3.4
Cisco Registered Envelope Service 4.7
4.8
CVSSv3
CVE-2021-1238
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerabi...
Cisco Firepower Management Center
4.8
CVSSv3
CVE-2021-1603
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1604
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
4.8
CVSSv3
CVE-2021-1605
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »