Total
36793 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-18741 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Download.php?lgid=1 during editing. | |||||
| CVE-2018-18740 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in SEMCMS 3.4 via the first input field to the admin/SEMCMS_Link.php?lgid=1 URI. | |||||
| CVE-2018-18739 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Products.php?lgid=1 Keywords field. | |||||
| CVE-2018-18738 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Categories.php?pid=1&lgid=1 category_key parameter. | |||||
| CVE-2018-18736 | 1 Catfish-cms | 1 Catfish Blog | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| An XSS issue was discovered in catfish blog 2.0.33, related to "write source code." | |||||
| CVE-2018-18733 | 1 Catfish-cms | 1 Catfish Cms | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| An XSS issue was discovered in Catfish CMS 4.8.30, related to "write source code," a similar issue to CVE-2018-13999. | |||||
| CVE-2018-18726 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in admin/sitelink/editsitelink?id=16 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18725 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in admin/banner/editbanner?id=20 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18724 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in index.php/admin/category/editcategory?id=73 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18723 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in index.php/admin/area/editarea/id/110000 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18722 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in admin/content/editcontent?id=29&gopage=1 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18721 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in admin/link/editlink?id=5 in YUNUCMS 1.1.5. | |||||
| CVE-2018-18720 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An XSS issue was discovered in index.php/admin/system/basic in YUNUCMS 1.1.5. | |||||
| CVE-2018-18717 | 1 Eleanor-cms | 1 Eleanor Cms | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=[XSS] URI. | |||||
| CVE-2018-18716 | 1 Zohocorp | 1 Manageengine Opmanager | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Zoho ManageEngine OpManager 12.3 before 123219 has a Self XSS Vulnerability. | |||||
| CVE-2018-18715 | 1 Zohocorp | 1 Manageengine Opmanager | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| Zoho ManageEngine OpManager 12.3 before 123219 has stored XSS. | |||||
| CVE-2018-18694 | 1 Monstra | 1 Monstra | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| admin/index.php?id=filesmanager in Monstra CMS 3.0.4 allows remote authenticated administrators to trigger stored XSS via JavaScript content in a file whose name lacks an extension. Such a file is interpreted as text/html in certain cases. | |||||
| CVE-2018-18692 | 1 Semcosoft | 1 Semcosoft | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| A reflected Cross-Site scripting (XSS) vulnerability in SEMCO Semcosoft 5.3 allows remote attackers to inject arbitrary web scripts or HTML via the username parameter to the Login Form. | |||||
| CVE-2018-18678 | 1 Sir | 1 Gnuboard | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroup_form_update.php gr_1~10 parameter. | |||||
| CVE-2018-18676 | 1 Sir | 1 Gnuboard | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "mobile board tail contents" parameter, aka the adm/board_form_update.php bo_mobile_content_tail parameter. | |||||