Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ishaq mohammed vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-15878
A cross-site scripting (XSS) vulnerability exists in fields/types/markdown/MarkdownType.js in KeystoneJS prior to 4.0.0-beta.7 via the Contact Us feature.
Keystonejs Keystone
1 EDB exploit
8.8
CVSSv3
CVE-2017-15879
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in admin/server/api/download.js and lib/list/getCSVData.js in KeystoneJS prior to 4.0.0-beta.7 via a value that is mishandled in a CSV export.
Keystonejs Keystone
1 EDB exploit
5.4
CVSSv3
CVE-2019-10349
A stored cross site scripting vulnerability in Jenkins Dependency Graph Viewer Plugin 0.13 and previous versions allowed attackers able to configure jobs in Jenkins to inject arbitrary HTML and JavaScript in the plugin-provided web pages in Jenkins.
Jenkins Dependency Graph Viewer
1 EDB exploit
NA
CVE-2017-146181
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
NA
CVE-2017-146182
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability.
6.1
CVSSv3
CVE-2017-14619
Cross-site scripting (XSS) vulnerability in phpMyFAQ up to and including 2.9.8 allows remote malicious users to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module.
Phpmyfaq Phpmyfaq
1 EDB exploit
NA
CVE-2017-146191
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.
NA
CVE-2017-146192
phpMyFAQ version 2.9.8 suffers from a persistent cross site scripting vulnerability where an attacker can embed malicious script code in the title of the faq.
NA
CVE-2019-103492
Jenkins Dependency Graph View plugin version 0.13 suffers from a persistent cross site scripting vulnerability.
NA
CVE-2017-152842
OctoberCMS version 1.0.425 suffers from a stored cross site scripting vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »