Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (42956 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2018-15312 1 F5 13 Big-ip Access Policy Manager, Big-ip Advanced Firewall Manager, Big-ip Analytics and 10 more 2024-11-21 N/A
On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user.
CVE-2018-15199 1 Auracms 1 Auracms 2024-11-21 N/A
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
CVE-2018-15190 1 Hotel Booking Script Project 1 Hotel Booking Script 2024-11-21 N/A
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
CVE-2018-15189 1 Advanced Real Estate Script Project 1 Advanced Real Estate Script 2024-11-21 N/A
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
CVE-2018-15184 1 Naukri Clone Script Project 1 Naukri Clone Script 2024-11-21 N/A
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
CVE-2018-15183 1 Myperfectresume \/ Jobhero \/ Resume Clone Script Project 1 Myperfectresume \/ Jobhero \/ Resume Clone Script 2024-11-21 N/A
PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields.
CVE-2018-15182 1 Car Rental Script Project 1 Car Rental Script 2024-11-21 N/A
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
CVE-2018-15181 1 Jio 2 4g Hotspot M2s, 4g Hotspot M2s Firmware 2024-11-21 N/A
JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields.
CVE-2018-15169 1 Zohocorp 1 Manageengine Applications Manager 2024-11-21 N/A
A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote attackers to inject arbitrary web script or HTML via the /deleteMO.do method parameter.
CVE-2018-15130 1 Thinksaas 1 Thinksaas 2024-11-21 N/A
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
CVE-2018-15129 1 Thinksaas 1 Thinksaas 2024-11-21 N/A
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
CVE-2018-14977 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070.
CVE-2018-14976 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
CVE-2018-14975 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
CVE-2018-14974 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
CVE-2018-14973 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
CVE-2018-14972 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.
CVE-2018-14971 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.
CVE-2018-14970 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.
CVE-2018-14969 1 Q-cms 1 Qcms 2024-11-21 N/A
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS.