Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2019-1707
A vulnerability in the web-based management interface of Cisco DNA Center could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to ins...
Cisco Dna Center
3.5
CVSSv2
CVE-2019-12626
A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
Cisco Unified Contact Center Express 12.5\\(1\\)
3.5
CVSSv2
CVE-2020-3491
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. The vu...
Cisco Vision Dynamic Signage Director 6.2.0
3.5
CVSSv2
CVE-2019-1956
A vulnerability in the web-based interface of the Cisco SPA112 2-Port Phone Adapter could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against another user of the device. The vulnerability is due to insufficient validation of user-s...
Cisco Spa112 2-port Phone Adapter Firmware
3.5
CVSSv2
CVE-2021-40131
A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient v...
Cisco Common Services Platform Collector
4.3
CVSSv2
CVE-2018-0128
A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. T...
Cisco Data Center Analytics Framework -
3.5
CVSSv2
CVE-2013-6232
Cross-site scripting (XSS) vulnerability in SpagoBI prior to 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.
Eng Spagobi
1 EDB exploit
3.5
CVSSv2
CVE-2021-34731
A vulnerability in the web-based management interface of Cisco Prime Access Registrar could allow an authenticated, remote malicious user to perform a stored cross-site scripting attack on an affected system. This vulnerability exists because the web-based management interface do...
Cisco Prime Access Registrar
3.5
CVSSv2
CVE-2020-3233
A vulnerability in the web-based Local Manager interface of the Cisco IOx Application Framework could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based Local Manager interface of an affected device....
Cisco Iox
3.5
CVSSv2
CVE-2021-34784
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based...
Cisco Prime Infrastructure
Cisco Evolved Programmable Network Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »