Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-20781
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. ...
Cisco Asyncos
4.8
CVSSv3
CVE-2021-34760
A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) Software could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficien...
Cisco Telepresence Management Suite
4.8
CVSSv3
CVE-2021-1271
A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. The vulne...
Cisco Web Security Virtual Appliance
5.4
CVSSv3
CVE-2019-15270
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to ...
Cisco Firepower Management Center Firmware
NA
CVE-2020-3420
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at...
4.8
CVSSv3
CVE-2021-1239
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerabi...
Cisco Firepower Management Center
4.8
CVSSv3
CVE-2020-3149
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote malicious user to perform a stored cross-site scripting (XSS) attack on an affected device. The vulnerability is due to insufficient input v...
Cisco Identity Services Engine
5.4
CVSSv3
CVE-2018-0367
A vulnerability in the web-based management interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected service. The vuln...
Cisco Registered Envelope Service 5.3.1
Cisco Registered Envelope Service 5.0
Cisco Registered Envelope Service 5.3
Cisco Registered Envelope Service 5.3.4
Cisco Registered Envelope Service 4.7
5.4
CVSSv3
CVE-2019-12638
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct cross-site scripting (XSS) attacks against a user of the web-based management interface. The vulnerability is due to insuff...
Cisco Identity Services Engine 2.7\\(0.999\\)
Cisco Identity Services Engine 2.3
Cisco Identity Services Engine 2.4
Cisco Identity Services Engine 2.3\\(0.298\\)
Cisco Identity Services Engine 2.4\\(0.357\\)
Cisco Identity Services Engine 2.6\\(0.156\\)
Cisco Identity Services Engine
4.8
CVSSv3
CVE-2021-1606
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »