Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
reflected xss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6711
Cross-site scripting (XSS) vulnerability in the product-creation administrative page in Cisco WebEx Sales Center allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCul25540.
Cisco Webex Sales Center -
NA
CVE-2015-4210
Cross-site scripting (XSS) vulnerability in Cisco WebEx Meeting Center allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCur03806.
Cisco Webex Meeting Center -
6.1
CVSSv3
CVE-2018-0386
A vulnerability in Cisco Unified Communications Domain Manager Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack on an affected system. The vulnerability is due to improper validation of input that is passed to the affec...
Cisco Hosted Collaboration Solution 11.5\\(1\\)
Cisco Unified Communications Domain Manager -
6.1
CVSSv3
CVE-2021-34742
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. This vulnerability is due to ...
Cisco Vision Dynamic Signage Director
NA
CVE-2015-0762
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) for Microsoft Outlook allows remote malicious users to inject arbitrary web script or HTML via a crafted value in a URL, aka Bug ID CSCuu51400.
Cisco Unified Meetingplace 8.6\\(1.9\\)
Cisco Unified Meetingplace 8.6\\(1.2\\)
6.1
CVSSv3
CVE-2018-0223
A vulnerability in DesktopServlet in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to ...
Cisco Security Manager 4.9\\(0\\)qa99
6.1
CVSSv3
CVE-2018-0093
A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. T...
Cisco Web Security Appliance
NA
CVE-2014-0735
Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (Unified CM) 10.0(1) and previous versions allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCum46470.
Cisco Unified Communications Manager
Cisco Unified Communications Manager 3.3\\(5\\)
Cisco Unified Communications Manager 3.3\\(5\\)sr1
Cisco Unified Communications Manager 3.3\\(5\\)sr2a
Cisco Unified Communications Manager 4.3
Cisco Unified Communications Manager 4.1\\(3\\)sr4
Cisco Unified Communications Manager 4.2
Cisco Unified Communications Manager 4.2.1
Cisco Unified Communications Manager 4.2.2
Cisco Unified Communications Manager 10.0
Cisco Unified Communications Manager 4.1\\(3\\)
Cisco Unified Communications Manager 4.1\\(3\\)sr2
Cisco Unified Communications Manager 4.2.3sr1
Cisco Unified Communications Manager 4.2.3sr2b
Cisco Unified Communications Manager 4.1\\(3\\)sr1
Cisco Unified Communications Manager 4.1\\(3\\)sr3
Cisco Unified Communications Manager 4.2.3
Cisco Unified Communications Manager 4.2.3sr2
6.1
CVSSv3
CVE-2020-28350
A Cross Site Scripting (XSS) vulnerability exists in OPAC in Sokrates SOWA SowaSQL up to and including 5.6.1 via the sowacgi.php typ parameter.
Sokrates Sowasql
NA
CVE-2014-3372
Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface in the Server in Cisco Unified Communications Manager allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuq90589.
Cisco Unified Communications Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »