CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
801 CVE-2018-16277 79 XSS 2018-09-27 2018-11-15
3.5
None Remote Medium Single system None Partial None
The Image Import function in XWiki through 10.7 has XSS.
802 CVE-2018-16250 79 XSS 2019-06-20 2019-06-21
3.5
None Remote Medium Single system None Partial None
The "utilisateur" menu in Creatiwity wityCMS 0.6.2 modifies the presence of XSS at two input points for user information, with the "first name" and "last name" parameters.
803 CVE-2018-16249 79 XSS 2019-06-20 2019-06-21
3.5
None Remote Medium Single system None Partial None
In Symphony before 3.3.0, there is XSS in the Title under Post. The ID "articleTitle" of this is stored in the "articleTitle" JSON field, and executes a payload when accessing the /member/test/points URI, allowing remote attacks. Any Web script or HTML can be inserted by an admin-authenticated user via a crafted web site name.
804 CVE-2018-16247 79 XSS 2019-06-20 2019-06-20
3.5
None Remote Medium Single system None Partial None
YzmCMS 5.1 has XSS via the admin/system_manage/user_config_add.html title parameter.
805 CVE-2018-16219 287 2019-04-25 2019-04-26
3.3
None Local Network Low Not required None Partial None
A missing password verification in the web interface in AudioCodes 405HD VoIP phone with firmware 2.2.12 allows an remote attacker (in the same network as the device) to change the admin password without authentication via a POST request.
806 CVE-2018-16205 79 XSS 2019-01-09 2019-01-16
3.5
None Remote Medium Single system None Partial None
Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via New Page modal.
807 CVE-2018-16204 79 XSS 2019-01-09 2019-10-03
3.5
None Remote Medium Single system None Partial None
Cross-site scripting vulnerability in Google XML Sitemaps Version 4.0.9 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
808 CVE-2018-16197 Bypass 2019-01-09 2019-10-02
3.3
None Local Network Low Not required Partial None None
Toshiba Home gateway HEM-GW16A 1.2.9 and earlier, Toshiba Home gateway HEM-GW26A 1.2.9 and earlier allows an attacker on the same network segment to bypass access restriction to access the information and files stored on the affected device.
809 CVE-2018-16193 79 XSS 2019-01-09 2019-01-17
3.5
None Remote Medium Single system None Partial None
Cross-site scripting vulnerability in Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
810 CVE-2018-16192 200 +Info 2019-01-09 2019-01-17
3.3
None Local Network Low Not required Partial None None
Aterm WF1200CR and Aterm WG1200CR (Aterm WF1200CR firmware Ver1.1.1 and earlier, Aterm WG1200CR firmware Ver1.0.1 and earlier) allow an attacker on the same network segment to obtain information registered on the device via unspecified vectors.
811 CVE-2018-16164 79 XSS 2019-01-09 2019-01-16
3.5
None Remote Medium Single system None Partial None
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
812 CVE-2018-16138 79 XSS 2019-05-13 2019-05-15
3.5
None Remote Medium Single system None Partial None
An issue was discovered in the administration page in IPBRICK OS 6.3. There are multiple XSS vulnerabilities.
813 CVE-2018-15917 79 XSS 2018-09-05 2018-10-24
3.5
None Remote Medium Single system None Partial None
Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language.
814 CVE-2018-15903 79 XSS 2018-10-08 2018-11-26
3.5
None Remote Medium Single system None Partial None
The Discuss v1.2.1 module in Claromentis 8.2.2 is vulnerable to stored Cross Site Scripting (XSS). An authenticated attacker will be able to place malicious JavaScript in the discussion forum, which is present in the login landing page. A low privilege user can use this to steal the session cookies from high privilege accounts and hijack these, enabling them to hijack the elevated session and perform actions in their security context.
815 CVE-2018-15896 79 XSS 2018-08-28 2018-10-31
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Website Seller Script 2.0.5 has XSS via Personal Address or Company Name.
816 CVE-2018-15891 79 XSS 2019-06-20 2019-06-27
3.5
None Remote Medium Single system None Partial None
An issue was discovered in FreePBX core before 3.0.122.43, 14.0.18.34, and 5.0.1beta4. By crafting a request for adding Asterisk modules, an attacker is able to store JavaScript commands in a module name.
817 CVE-2018-15880 79 XSS 2018-08-28 2018-11-02
3.5
None Remote Medium Single system None Partial None
An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack.
818 CVE-2018-15843 79 XSS 2018-08-25 2018-10-17
3.5
None Remote Medium Single system None Partial None
GetSimple CMS 3.3.14 has XSS via the admin/edit.php "Add New Page" field.
819 CVE-2018-15842 79 XSS 2018-08-25 2018-10-17
3.5
None Remote Medium Single system None Partial None
WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter.
820 CVE-2018-15800 200 +Info 2018-12-10 2019-10-09
3.5
None Remote Medium Single system Partial None None
Cloud Foundry Bits Service, versions prior to 2.18.0, includes an information disclosure vulnerability. A remote malicious user may execute a timing attack to brute-force the signing key, allowing them complete read and write access to the the Bits Service storage.
821 CVE-2018-15713 79 XSS 2018-11-14 2018-12-06
3.5
None Remote Medium Single system None Partial None
Nagios XI 5.5.6 allows persistent cross site scripting from remote authenticated attackers via the stored email address in admin/users.php.
822 CVE-2018-15707 79 XSS 2018-10-31 2018-12-12
3.5
None Remote Medium Single system None Partial None
Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting in the Bwmainleft.asp page. An attacker could leverage this vulnerability to disclose credentials amongst other things.
823 CVE-2018-15701 20 DoS 2018-10-01 2018-11-27
3.3
None Local Network Low Not required None None Partial
The web interface in TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 is vulnerable to a denial of service when an unauthenticated LAN user sends a crafted HTTP header containing an unexpected Cookie field.
824 CVE-2018-15693 863 Bypass 2018-11-16 2019-10-02
3.5
None Remote Medium Single system None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference.
825 CVE-2018-15692 863 Bypass 2018-11-16 2019-10-02
3.5
None Remote Medium Single system None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions.
826 CVE-2018-15614 79 XSS 2019-01-23 2019-10-09
3.5
None Remote Medium Single system None Partial None
A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scripting attacks via fields in the Conference Scheduler Service that could affect other application users. Affected versions of IP Office include 10.0 through 10.1 SP3 and 11.0 versions prior to 11.0 SP1.
827 CVE-2018-15570 79 XSS 2018-08-19 2018-10-19
3.5
None Remote Medium Single system None Partial None
In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.
828 CVE-2018-15451 79 Exec Code XSS 2018-11-08 2019-10-09
3.5
None Remote Medium Single system None Partial None
A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to click a maliciously crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive browser-based information.
829 CVE-2018-15426 79 Exec Code XSS 2018-10-05 2019-10-09
3.5
None Remote Medium Single system None Partial None
A vulnerability in the web-based interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based interface of the affected software. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the web-based interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.
830 CVE-2018-15392 DoS 2018-10-05 2019-10-09
3.3
None Local Network Low Not required None None Partial
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vulnerability by sending malicious DHCP lease requests to an affected application. A successful exploit could allow the attacker to cause the DHCP service to terminate, resulting in a DoS condition.
831 CVE-2018-15365 79 XSS Bypass CSRF 2018-09-28 2018-11-16
3.5
None Remote Medium Single system None Partial None
A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. An attacker must be an authenticated user in order to exploit the vulnerability.
832 CVE-2018-15199 79 XSS 2018-08-07 2018-10-04
3.5
None Remote Medium Single system None Partial None
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
833 CVE-2018-15190 79 XSS 2018-08-10 2018-10-06
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
834 CVE-2018-15189 79 XSS 2018-08-10 2018-10-05
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
835 CVE-2018-15184 79 XSS 2018-08-09 2018-10-09
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
836 CVE-2018-15182 79 XSS 2018-08-09 2018-10-05
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
837 CVE-2018-15130 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium Single system None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
838 CVE-2018-15129 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium Single system None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
839 CVE-2018-15000 2019-04-25 2019-10-02
3.3
None Local Medium Not required Partial Partial None
The Vivo V7 Android device with a build fingerprint of vivo/1718/1718:7.1.2/N2G47H/compil11021857:user/release-keys contains a platform app with a package name of com.vivo.smartshot (versionCode=1, versionName=3.0.0). This app contains an exported service named com.vivo.smartshot.ui.service.ScreenRecordService that will record the screen for 60 minutes and write the mp4 file to a location of the user's choosing. Normally, a recording notification will be visible to the user, but we discovered an approach to make it mostly transparent to the user by quickly removing a notification and floating icon. The user can see a floating icon and notification appear and disappear quickly due to quickly stopping and restarting the service with different parameters that do not interfere with the ongoing screen recording. The screen recording lasts for 60 minutes and can be written directly to the attacking app's private directory.
840 CVE-2018-14980 732 DoS 2019-04-25 2019-10-02
3.6
None Local Low Not required Partial Partial None
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0/NRD90M/US_Phone-14.14.1711.92-20171208:user/release-keys contains the android framework (i.e., system_server) with a package name of android (versionCode=24, versionName=7.0) that has been modified by ASUS or another entity in the supply chain. The system_server process in the core android package has an exported broadcast receiver that allows any app co-located on the device to programmatically initiate the taking of a screenshot and have the resulting screenshot be written to external storage (i.e., sdcard). The taking of a screenshot is not transparent to the user; the device has a screen animation as the screenshot is taken and there is a notification indicating that a screenshot occurred. If the attacking app also requests the EXPAND_STATUS_BAR permission, it can wake the device up using certain techniques and expand the status bar to take a screenshot of the user's notifications even if the device has an active screen lock. The notifications may contain sensitive data such as text messages used in two-factor authentication. The system_server process that provides this capability cannot be disabled, as it is part of the Android framework. The notification can be removed by a local Denial of Service (DoS) attack to reboot the device.
841 CVE-2018-14976 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
842 CVE-2018-14975 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
843 CVE-2018-14974 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
844 CVE-2018-14973 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
845 CVE-2018-14972 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.
846 CVE-2018-14971 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.
847 CVE-2018-14970 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.
848 CVE-2018-14969 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS.
849 CVE-2018-14964 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium Single system None Partial None
An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page.
850 CVE-2018-14962 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium Single system None Partial None
zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php.
Total number of vulnerabilities : 4556   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 (This Page)18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.