Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-79
Total 36929 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-20663 1 Netgear 6 Rbk50, Rbk50 Firmware, Rbr50 and 3 more 2024-11-21 2.3 LOW 4.3 MEDIUM
Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
CVE-2019-20662 1 Netgear 6 Rbk50, Rbk50 Firmware, Rbr50 and 3 more 2024-11-21 2.3 LOW 4.3 MEDIUM
Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
CVE-2019-20661 1 Netgear 6 Rbk50, Rbk50 Firmware, Rbr50 and 3 more 2024-11-21 2.3 LOW 4.8 MEDIUM
Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
CVE-2019-20660 1 Netgear 18 Rbk20, Rbk20 Firmware, Rbk40 and 15 more 2024-11-21 3.5 LOW 4.8 MEDIUM
Certain NETGEAR devices are affected by stored XSS. This affects RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK20 before 2.3.5.26, RBR40 before 2.3.5.30, RBS40 before 2.3.5.30, RBK40 before 2.3.5.30, RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
CVE-2019-20645 1 Netgear 2 Rax40, Rax40 Firmware 2024-11-21 3.5 LOW 4.8 MEDIUM
NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS.
CVE-2019-20644 1 Netgear 2 Rax40, Rax40 Firmware 2024-11-21 3.5 LOW 4.8 MEDIUM
NETGEAR RAX40 devices before 1.0.3.62 are affected by stored XSS.
CVE-2019-20639 1 Netgear 6 Rbk50, Rbk50 Firmware, Rbr50 and 3 more 2024-11-21 3.5 LOW 4.8 MEDIUM
Certain NETGEAR devices are affected by stored XSS. This affects RBR50 before 2.3.5.30, RBS50 before 2.3.5.30, and RBK50 before 2.3.5.30.
CVE-2019-20528 1 Igniterealtime 1 Openfire 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter.
CVE-2019-20527 1 Igniterealtime 1 Openfire 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp serverURL parameter.
CVE-2019-20526 1 Igniterealtime 1 Openfire 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp password parameter.
CVE-2019-20525 1 Igniterealtime 1 Openfire 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter.
CVE-2019-20524 1 Ilch 1 Ilch Cms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.
CVE-2019-20523 1 Ilch 1 Ilch Cms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.
CVE-2019-20522 1 Ilch 1 Ilch Cms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.
CVE-2019-20521 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/ URI.
CVE-2019-20520 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI.
CVE-2019-20519 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.
CVE-2019-20518 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI.
CVE-2019-20517 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI.
CVE-2019-20516 1 Frappe 1 Erpnext 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI.