Total
40736 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-19902 | 1 No-cms Project | 1 No-cms | 2024-11-21 | N/A |
| No-CMS 1.1.3 is prone to Persistent XSS via the blog/manage_article "keyword" parameter. | ||||
| CVE-2018-19901 | 1 No-cms Project | 1 No-cms | 2024-11-21 | N/A |
| No-CMS 1.1.3 is prone to Persistent XSS via the blog/manage_article/index/ "article_title" parameter. | ||||
| CVE-2018-19892 | 1 Domainmod | 1 Domainmod | 2024-11-21 | N/A |
| DomainMOD through 4.11.01 has XSS via the admin/dw/add-server.php DisplayName, HostName, or UserName field. | ||||
| CVE-2018-19877 | 1 Adiscon | 1 Loganalyzer | 2024-11-21 | N/A |
| login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field. | ||||
| CVE-2018-19849 | 1 Yzmcms | 1 Yzmcms | 2024-11-21 | N/A |
| An issue was discovered in YzmCMS 5.2. XSS exists via the admin/content/search.html searinfo parameter. | ||||
| CVE-2018-19845 | 1 Get-simple | 1 Getsimple Cms | 2024-11-21 | N/A |
| There is Stored XSS in GetSimple CMS 3.3.12 via the admin/edit.php "post-menu" parameter, a related issue to CVE-2018-16325. | ||||
| CVE-2018-19844 | 1 Frogcms Project | 1 Frogcms | 2024-11-21 | N/A |
| FROG CMS 0.9.5 has XSS via the admin/?/snippet/add name parameter, which is mishandled during an edit action, a related issue to CVE-2018-10319. | ||||
| CVE-2018-19836 | 1 Metinfo | 1 Metinfo | 2024-11-21 | N/A |
| In Metinfo 6.1.3, include/interface/applogin.php allows setting arbitrary HTTP headers (including the Cookie header), and common.inc.php allows registering variables from the $_COOKIE value. This issue can, for example, be exploited in conjunction with CVE-2018-19835 to bypass many XSS filters such as the Chrome XSS filter. | ||||
| CVE-2018-19835 | 1 Metinfo | 1 Metinfo | 2024-11-21 | N/A |
| Metinfo 6.1.3 has reflected XSS via the admin/column/move.php lang_columnerr4 parameter. | ||||
| CVE-2018-19828 | 1 Artica | 1 Integria Ims | 2024-11-21 | N/A |
| Artica Integria IMS 5.0.83 has XSS via the search_string parameter. | ||||
| CVE-2018-19822 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SharedCriteria.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19821 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SecurityPolicies.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19820 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Roles.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19819 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Rights.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19818 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Contacts.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19817 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/AdminAuthorisationFrame.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19816 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/categorytree/ChooseCategory.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19815 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/UserPopupAddNewProp.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19814 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscriptions.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19813 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscribers.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||