Vulmon Recent Vulnerabilities Trends Blog About Contact

reflected xss vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2017-16785
Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php....
Cacti
4.3
CVSSv2
CVE-2019-11776
In Eclipse BIRT versions 1.0 to 4.7, the Report Viewer allows Reflected XSS in URL parameter. Attacker can execute the payload in victim's browser context....
4.3
CVSSv2
CVE-2016-1000139
Reflected XSS in wordpress plugin infusionsoft v1.5.11...
Infusionsoft ProjectInfusionsoft
4.3
CVSSv2
CVE-2016-1000144
Reflected XSS in wordpress plugin photoxhibit v2.1.8...
Photoxhibit ProjectPhotoxhibit
2.6
CVSSv2
CVE-2018-16514
A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted...
Mantisbt
4.3
CVSSv2
CVE-2018-5712
An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file....
PhpCanonicalUbuntu LinuxDebianDebian Linux
4.3
CVSSv2
CVE-2018-15314
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page....
F5Big-ip Advanced Firewall Manager
4.3
CVSSv2
CVE-2018-15313
On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page....
F5Big-ip Advanced Firewall Manager
4.3
CVSSv2
CVE-2016-1000153
Reflected XSS in wordpress plugin tidio-gallery v1.1...
Tidio-gallery ProjectTidio-gallery
4.3
CVSSv2
CVE-2016-1000147
Reflected XSS in wordpress plugin recipes-writer v1.0.4...
Recipes-writer ProjectRecipes-writer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2019-15126upsourcecombodoCVE-2020-15826CVE-2020-11984TCPetcdyoutrackCVE-2020-16221CVE-2020-11209CVE-2020-15821buffer overflowXXE