CVE-2018-4929 CVSS:0.0
Adobe Experience Manager versions 6.2 and earlier have an exploitable stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. (Last Update:2018-05-19) (Publish Update:2018-05-19)
CVE-2018-4930 CVSS:0.0
Adobe Experience Manager versions 6.3 and earlier have an exploitable Cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. (Last Update:2018-05-19) (Publish Update:2018-05-19)
CVE-2018-4931 CVSS:0.0
Adobe Experience Manager versions 6.1 and earlier have an exploitable stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. (Last Update:2018-05-19) (Publish Update:2018-05-19)
CVE-2018-4940 CVSS:0.0
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure. (Last Update:2018-05-19) (Publish Update:2018-05-19)
CVE-2018-4941 CVSS:0.0
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure. (Last Update:2018-05-19) (Publish Update:2018-05-19)
CVE-2018-10306 CVSS:0.0
Services/Form/classes/class.ilDateDurationInputGUI.php and Services/Form/classes/class.ilDateTimeInputGUI.php in ILIAS 5.1.x through 5.3.x before 5.3.4 allow XSS via an invalid date. (Last Update:2018-05-18) (Publish Update:2018-05-18)
CVE-2018-10307 CVSS:0.0
error.php in ILIAS 5.2.x through 5.3.x before 5.3.4 allows XSS via the text of a PDO exception. (Last Update:2018-05-18) (Publish Update:2018-05-18)
CVE-2018-11245 CVSS:0.0
app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes. (Last Update:2018-05-18) (Publish Update:2018-05-18)
CVE-2018-11248 CVSS:0.0
util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Directory Traversal. (Last Update:2018-05-18) (Publish Update:2018-05-18)
CVE-2018-1147 CVSS:0.0
In Nessus before 7.1.0, a XSS vulnerability exists due to improper input validation. A remote authenticated attacker could create and upload a .nessus file, which may be viewed by an administrator allowing for the execution of arbitrary script code in a user's browser session. In other scenarios, XSS could also occur by altering variables from the Advanced Settings. (Last Update:2018-05-18) (Publish Update:2018-05-18)
Click here for a complete list of security vulnerabilities. This vulnerability list widget is provided by www.cvedetails.com