Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jeesns vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-19282
A reflected cross-site scripting (XSS) vulnerability in Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field.
Jeesns Jeesns 1.4.2
4.3
CVSSv2
CVE-2020-19283
A reflected cross-site scripting (XSS) vulnerability in the /newVersion component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2020-19286
A stored cross-site scripting (XSS) vulnerability in the /question/detail component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the source field of the editor.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2020-19288
A stored cross-site scripting (XSS) vulnerability in the /localhost/u component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in a private message.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2020-19289
A stored cross-site scripting (XSS) vulnerability in the /member/picture/album component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in the new album tab.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2020-19292
A stored cross-site scripting (XSS) vulnerability in the /question/ask component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in a posted question.
Jeesns Jeesns 1.4.2
NA
CVE-2022-38550
A stored cross-site scripting (XSS) vulnerability in the /weibo/list component of Jeesns v2.0.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Jeesns Jeesns 2.0.0
3.5
CVSSv2
CVE-2020-19291
A stored cross-site scripting (XSS) vulnerability in the /weibo/publishdata component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in a posted Weibo.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2020-19293
A stored cross-site scripting (XSS) vulnerability in the /article/add component of Jeesns 1.4.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload in a posted article.
Jeesns Jeesns 1.4.2
3.5
CVSSv2
CVE-2018-17886
An issue exists in JEESNS 1.3. The XSS filter in com.lxinet.jeesns.core.utils.XssHttpServletRequestWrapper.java could be bypassed, as demonstrated by a <svg/onLoad=confirm substring. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-12429.
Jeesns Jeesns 1.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »