CWE-79 CVEs and Security Vulnerabilities

Filtered by CWE-79

Search

Switch to Advanced Search (Beta)

Total 40733 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-15199	1 Auracms	1 Auracms	2024-11-21	N/A
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
CVE-2018-15190	1 Hotel Booking Script Project	1 Hotel Booking Script	2024-11-21	N/A
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
CVE-2018-15189	1 Advanced Real Estate Script Project	1 Advanced Real Estate Script	2024-11-21	N/A
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
CVE-2018-15184	1 Naukri Clone Script Project	1 Naukri Clone Script	2024-11-21	N/A
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
CVE-2018-15183	1 Myperfectresume \/ Jobhero \/ Resume Clone Script Project	1 Myperfectresume \/ Jobhero \/ Resume Clone Script	2024-11-21	N/A
PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields.
CVE-2018-15182	1 Car Rental Script Project	1 Car Rental Script	2024-11-21	N/A
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
CVE-2018-15181	1 Jio	2 4g Hotspot M2s, 4g Hotspot M2s Firmware	2024-11-21	N/A
JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields.
CVE-2018-15169	1 Zohocorp	1 Manageengine Applications Manager	2024-11-21	N/A
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote attackers to inject arbitrary web script or HTML via the /deleteMO.do method parameter.
CVE-2018-15130	1 Thinksaas	1 Thinksaas	2024-11-21	N/A
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
CVE-2018-15129	1 Thinksaas	1 Thinksaas	2024-11-21	N/A
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
CVE-2018-14977	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070.
CVE-2018-14976	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
CVE-2018-14975	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
CVE-2018-14974	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
CVE-2018-14973	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
CVE-2018-14972	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.
CVE-2018-14971	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.
CVE-2018-14970	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.
CVE-2018-14969	1 Q-cms	1 Qcms	2024-11-21	N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS.
CVE-2018-14964	1 Emlsoft Project	1 Emlsoft	2024-11-21	N/A
An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page.

« first previous Page 1887 of 2037. next last »