Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stored xss vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-1777
A vulnerability in the web-based interface of the Cisco Registered Envelope Service could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against another user of the service. The vulnerability is due to insufficient validation of user-...
Cisco Registered Envelope Service 5.3.4-027
5.4
CVSSv3
CVE-2019-15270
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to ...
Cisco Firepower Management Center Firmware
5.4
CVSSv3
CVE-2020-3185
A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to ...
Cisco Telepresence Management Suite
5.4
CVSSv3
CVE-2022-20781
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. ...
Cisco Asyncos
NA
CVE-2020-3420
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) at...
5.4
CVSSv3
CVE-2017-6716
A vulnerability in the web framework code of Cisco Firepower Management Center could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of an affected system. Affected Products: Cisco Firepower M...
Cisco Firepower Management Center 5.4.1
Cisco Firepower Management Center 5.4.1.4
Cisco Firepower Management Center 5.3.1.7
Cisco Firepower Management Center 5.4.0.2
Cisco Firepower Management Center 5.4.1.2
Cisco Firepower Management Center 5.4.1.5
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.4.1.6
Cisco Firepower Management Center 5.4.1.9
Cisco Firepower Management Center 5.4.1.3
Cisco Firepower Management Center 5.4.1.1
6.1
CVSSv3
CVE-2016-1293
Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT System Software 6.0.0 and 6.0.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCux40414.
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 6.0.1
4.8
CVSSv3
CVE-2021-1239
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected system. The vulnerabi...
Cisco Firepower Management Center
4.8
CVSSv3
CVE-2020-3149
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote malicious user to perform a stored cross-site scripting (XSS) attack on an affected device. The vulnerability is due to insufficient input v...
Cisco Identity Services Engine
4.8
CVSSv3
CVE-2021-1603
Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user. These vulnerabilities exist because the web-based manag...
Cisco Identity Services Engine
Cisco Identity Services Engine 2.6.0
Cisco Identity Services Engine 2.7.0
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 2.6\\(0.999\\)
Cisco Identity Services Engine 2.7\\(0.356\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »