Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-1605
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
3.5
CVSSv2
CVE-2021-1606
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
3.5
CVSSv2
CVE-2021-1607
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
3.5
CVSSv2
CVE-2018-0367
A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The vuln...
Cisco Registered Envelope Service 5.3.1
Cisco Registered Envelope Service 5.0
Cisco Registered Envelope Service 5.3
Cisco Registered Envelope Service 5.3.4
Cisco Registered Envelope Service 4.7
NA
CVE-2023-20085
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. This vuln...
Cisco Identity Services Engine 3.2
3.5
CVSSv2
CVE-2021-1238
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerabi...
Cisco Firepower Management Center
3.5
CVSSv2
CVE-2021-1239
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerabi...
Cisco Firepower Management Center
3.5
CVSSv2
CVE-2020-3149
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote malicious user to perform a stored cross-site scripting (XSS) attack on an affected device. The vulnerability is due to insufficient input v...
Cisco Identity Services Engine
3.5
CVSSv2
CVE-2020-3340
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface. These vulnerabiliti...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
3.5
CVSSv2
CVE-2019-15281
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected dev...
Cisco Identity Services Engine Software
Cisco Identity Services Engine Software 2.4\\(0.357\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »