Total
21765 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2019-12453 | 1 Microstrategy | 1 Microstrategy Web | 2019-08-05 | 4.3 MEDIUM | 6.1 MEDIUM |
| In MicroStrategy Web before 10.1 patch 10, stored XSS is possible in the FLTB parameter due to missing input validation. | |||||
| CVE-2019-12345 | 1 Kibokolabs | 1 Hostel | 2019-08-03 | 4.3 MEDIUM | 6.1 MEDIUM |
| XSS exists in the Kiboko Hostel plugin before 1.1.4 for WordPress. | |||||
| CVE-2019-3958 | 1 Wallaceit | 1 Wallacepos | 2019-08-02 | 3.5 LOW | 5.4 MEDIUM |
| Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks via a crafted sales transaction. | |||||
| CVE-2019-14471 | 1 Testlink | 1 Testlink | 2019-08-02 | 4.3 MEDIUM | 6.1 MEDIUM |
| TestLink 1.9.19 has XSS via the error.php message parameter. | |||||
| CVE-2017-16807 | 1 Getkirby | 1 Panel | 2019-08-02 | 3.5 LOW | 5.4 MEDIUM |
| A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, 2.4.x before 2.4.2, and 2.5.x before 2.5.7 exists when displaying a specially prepared SVG document that has been uploaded as a content file. | |||||
| CVE-2019-5926 | 1 Kinagacms Project | 1 Kinagacms | 2019-08-02 | 4.3 MEDIUM | 6.1 MEDIUM |
| Cross-site scripting vulnerability in KinagaCMS versions prior to 6.5 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2018-20901 | 1 Cpanel | 1 Cpanel | 2019-08-02 | 4.3 MEDIUM | 6.1 MEDIUM |
| cPanel before 71.9980.37 allows Remote-Stored XSS in WHM Save Theme Interface (SEC-400). | |||||
| CVE-2018-20903 | 1 Cpanel | 1 Cpanel | 2019-08-02 | 4.3 MEDIUM | 6.1 MEDIUM |
| cPanel before 71.9980.37 allows self XSS in the WHM Backup Configuration interface (SEC-421). | |||||
| CVE-2018-20911 | 1 Cpanel | 1 Cpanel | 2019-08-02 | 6.5 MEDIUM | 7.2 HIGH |
| cPanel before 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of cpaddonsup (SEC-359). | |||||
| CVE-2018-20881 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.8 allows self stored XSS on the Security Questions login page (SEC-446). | |||||
| CVE-2018-20878 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441). | |||||
| CVE-2018-20877 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.8 allows self XSS in WHM Style Upload interface (SEC-437). | |||||
| CVE-2018-20876 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.8 allows self XSS in the Site Software Moderation interface (SEC-434). | |||||
| CVE-2018-20875 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.8 allows self XSS in the WHM Security Questions interface (SEC-433). | |||||
| CVE-2018-20884 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 74.0.0 allows stored XSS in the WHM File Restoration interface (SEC-367). | |||||
| CVE-2018-20910 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 4.3 MEDIUM | 6.1 MEDIUM |
| cPanel before 70.0.23 allows self XSS in the WHM cPAddons showsecurity Interface (SEC-357). | |||||
| CVE-2018-20915 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-369). | |||||
| CVE-2018-20916 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 3.5 LOW | 5.4 MEDIUM |
| cPanel before 70.0.23 allows Stored XSS via a WHM Edit MX Entry (SEC-370). | |||||
| CVE-2018-20918 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 4.3 MEDIUM | 6.1 MEDIUM |
| cPanel before 70.0.23 allows stored XSS in WHM DNS Cluster (SEC-372). | |||||
| CVE-2018-20919 | 1 Cpanel | 1 Cpanel | 2019-08-01 | 4.3 MEDIUM | 6.1 MEDIUM |
| cPanel before 70.0.23 allows stored XSS via a WHM Create Account action (SEC-373). | |||||