Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
reflected xss vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2018-1002007
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST request variable html_id.
Kibokolabs Arigato Autoresponder And Newsletter 2.5.1.8
1 EDB exploit
4.8
CVSSv3
CVE-2018-1002008
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variable.
Kibokolabs Arigato Autoresponder And Newsletter 2.5.1.8
1 EDB exploit
6.1
CVSSv3
CVE-2018-11027
A reflected XSS vulnerability on Ruckus ICX7450-48 devices allows remote malicious users to inject arbitrary web script or HTML.
Ruckussecurity Icx7450-48 Firmware -
6.1
CVSSv3
CVE-2017-12212
A vulnerability in the web framework of Cisco Unity Connection could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web interface of an affected system. The vulnerability is due to insufficient input ...
Cisco Unity Connection 10.5\\(2\\)
6.1
CVSSv3
CVE-2023-20058
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-bas...
Cisco Unified Contact Center Express
Cisco Unified Contact Center Enterprise
Cisco Packaged Contact Center Enterprise
Cisco Unified Intelligence Center
6.1
CVSSv3
CVE-2021-1463
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-base...
Cisco Unified Contact Center Express
Cisco Unified Intelligence Center
6.1
CVSSv3
CVE-2021-1395
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because the web-based managem...
Cisco Unified Contact Center Enterprise -
Cisco Packaged Contact Center Enterprise -
Cisco Unified Intelligence Center
Cisco Unified Contact Center Express
Cisco Unified Intelligence Center 12.5\\(1\\)
6.1
CVSSv3
CVE-2019-1685
A vulnerability in the Security Assertion Markup Language (SAML) single sign-on (SSO) interface of Cisco Unity Connection could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. Th...
Cisco Unity Connection 12.5
6.1
CVSSv3
CVE-2019-15973
A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected application. The vulnerability is d...
Cisco Industrial Network Director
Cisco Network Level Service 1.7\\(0.186\\)
6.1
CVSSv3
CVE-2018-0411
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device....
Cisco Unified Communications Manager 11.0\\(1.10000.10\\)
Cisco Unified Communications Manager 11.5\\(1.10000.6\\)
Cisco Unified Communications Manager 12.0\\(1.10000.10\\)
Cisco Unified Communications Manager 10.5\\(2.10000.5\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »