Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
reflected xss vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-3372
Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589.
Cisco Unified Communications Manager
4.3
CVSSv2
CVE-2014-3374
Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface in the Server in Cisco Unified Communications Manager allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90582.
Cisco Unified Communications Manager
4.3
CVSSv2
CVE-2014-3375
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface in the Server in Cisco Unified Communications Manager allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90597.
Cisco Unified Communications Manager
4.3
CVSSv2
CVE-2018-0129
A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device...
Cisco Data Center Analytics Framework 1.0
4.3
CVSSv2
CVE-2014-3373
Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number Analyzer interface in the Server in Cisco Unified Communications Manager allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCup92550.
Cisco Unified Communications Manager
4.3
CVSSv2
CVE-2018-0206
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device....
Cisco Unified Communications Manager 11.5\\(1.13900.52\\)
3.5
CVSSv2
CVE-2020-17372
SugarCRM prior to 10.1.0 (Q3 2020) allows XSS.
Sugarcrm Sugarcrm
4.3
CVSSv2
CVE-2016-2228
Cross-site scripting (XSS) vulnerability in horde/templates/topbar/_menubar.html.php in Horde Groupware prior to 5.2.12 and Horde Groupware Webmail Edition prior to 5.2.12 allows remote malicious users to inject arbitrary web script or HTML via the searchfield parameter, as demon...
Debian Debian Linux 8.0
Horde Groupware
Horde Horde Groupware
Fedoraproject Fedora 22
Fedoraproject Fedora 23
4.3
CVSSv2
CVE-2013-7370
node-connect prior to 2.8.1 has XSS in the Sencha Labs Connect middleware
Redhat Openshift 2.0
Sencha Connect
Opensuse Opensuse 13.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2018-13055
A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) in MantisBT 2.1.0 up to and including 2.15.0 allows remote malicious users to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO.
Mantisbt Mantisbt
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »