Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-1707
A vulnerability in the web-based management interface of Cisco DNA Center could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to ins...
Cisco Dna Center
4.8
CVSSv3
CVE-2020-3491
A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an authenticated, remote attacker with administrative privileges to conduct a cross-site scripting (XSS) attack against a user of the interface on an affected device. The vu...
Cisco Vision Dynamic Signage Director 6.2.0
4.8
CVSSv3
CVE-2019-12626
A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affecte...
Cisco Unified Contact Center Express 12.5\\(1\\)
4.8
CVSSv3
CVE-2019-1956
A vulnerability in the web-based interface of the Cisco SPA112 2-Port Phone Adapter could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against another user of the device. The vulnerability is due to insufficient validation of user-s...
Cisco Spa112 2-port Phone Adapter Firmware
5.4
CVSSv3
CVE-2021-40131
A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient v...
Cisco Common Services Platform Collector
6.1
CVSSv3
CVE-2018-0128
A vulnerability in the web-based management interface of Cisco Data Center Analytics Framework could allow an unauthenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. T...
Cisco Data Center Analytics Framework -
NA
CVE-2013-6232
Cross-site scripting (XSS) vulnerability in SpagoBI prior to 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.
Eng Spagobi
1 EDB exploit
4.8
CVSSv3
CVE-2021-34731
A vulnerability in the web-based management interface of Cisco Prime Access Registrar could allow an authenticated, remote malicious user to perform a stored cross-site scripting attack on an affected system. This vulnerability exists because the web-based management interface do...
Cisco Prime Access Registrar
5.4
CVSSv3
CVE-2020-3233
A vulnerability in the web-based Local Manager interface of the Cisco IOx Application Framework could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web-based Local Manager interface of an affected device....
Cisco Iox
4.8
CVSSv3
CVE-2014-1454
Pearson eSIS (Enterprise Student Information System) message board has stored XSS due to improper validation of user input
Pearson Esis Enterprise Student Information System
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »