CVE-2017-18352 CVSS:0.0
Error reporting within Rendertron 1.0.0 allows reflected Cross Site Scripting (XSS) from invalid URLs. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-18245 CVSS:0.0
Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified check_load plugin to NRPE. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-18246 CVSS:0.0
Icinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module, or via /icingaweb2/config/moduleenable?name=setup to enable the setup module. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-18247 CVSS:0.0
Icinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add icon parameter. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-18248 CVSS:0.0
Icinga Web 2 has XSS via the /icingaweb2/monitoring/list/services dir parameter, the /icingaweb2/user/list query string, the /icingaweb2/monitoring/timeline query string, or the /icingaweb2/setup query string. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-1889 CVSS:0.0
IBM Security Guardium 10.0 and 10.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152080. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-1891 CVSS:0.0
IBM Security Guardium 10 and 10.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152082. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-19649 CVSS:0.0
XSS exists in InfoVista VistaPortal SE Version 5.1 (build 51029). VPortal/mgtconsole/RolePermissions.jsp has reflected XSS via the ConnPoolName parameter. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-19765 CVSS:0.0
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "EditCurrentPresentSpace.jsp" has reflected XSS via the ConnPoolName, GroupId, and ParentId parameters. (Last Update:2018-12-17) (Publish Update:2018-12-17)
CVE-2018-19766 CVSS:0.0
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "GroupRessourceAdmin.jsp" has reflected XSS via the ConnPoolName parameter. (Last Update:2018-12-17) (Publish Update:2018-12-17)
Click here for a complete list of security vulnerabilities. This vulnerability list widget is provided by www.cvedetails.com