Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-79
Total 37660 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-0574 1 Basercms 1 Basercms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0570 1 Basercms 1 Basercms 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site scripting vulnerability in baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0565 1 Cybozu 1 Office 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.8.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0559 1 Cybozu 1 Mailwise 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'Address' via unspecified vectors.
CVE-2018-0558 1 Cybozu 1 Mailwise 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Reflected cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML in 'System settings' via unspecified vectors.
CVE-2018-0557 1 Cybozu 1 Mailwise 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Stored cross-site scripting vulnerability in Cybozu Mailwise 5.0.0 to 5.4.1 allows remote attackers to inject arbitrary web script or HTML 'E-mail Details Screen' via unspecified vectors.
CVE-2018-0551 1 Cybozu 1 Garoon 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.6.1 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0549 1 Cybozu 1 Garoon 2024-11-21 3.5 LOW 5.4 MEDIUM
Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.6.0 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0547 1 Soflyy 1 Wp All Import 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.7 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0546 1 Soflyy 1 Wp All Import 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.6 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0538 1 Qqq Systems Project 1 Qqq Systems 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0537 1 Qqq Systems Project 1 Qqq Systems 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz_op.cgi.
CVE-2018-0536 1 Qqq Systems Project 1 Qqq Systems 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi.
CVE-2018-0535 1 Php 2chbbs Project 1 Php 2chbbs 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in PHP 2chBBS version bbs18c allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0534 1 Arsenol Project 1 Arsenol 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in ArsenoL Version 0.5 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0532 1 Cybozu 1 Garoon 2024-11-21 4.0 MEDIUM 2.7 LOW
Cybozu Garoon 3.0.0 to 4.2.6 allows remote authenticated attackers to bypass access restriction to alter setting data of the Standard database via unspecified vectors.
CVE-2018-0527 1 Cybozu 1 Office 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in Cybozu Office 10.0.0 to 10.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0519 1 Fsi 2 Fs010w, Fs010w Firmware 2024-11-21 3.5 LOW 4.8 MEDIUM
Cross-site scripting vulnerability in FS010W firmware FS010W_00_V1.3.0 and earlier allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0513 1 Mtssb.mt-systems 1 Simple Booking 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in MTS Simple Booking C, MTS Simple Booking Business version 1.28.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2018-0511 1 Meowapps 1 Wp Retina 2x 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP Retina 2x prior to version 5.2.2 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.