映射到 CWE-79 的搜索结果 (7389)

CVE-2018-5215(发布:2018-01-04 14:29:00)NM
CVSS3.5

[原文]Fork CMS 5.0.7 has XSS in /private/en/pages/edit via the title parameter.

CVE-2018-5216(发布:2018-01-04 14:29:00)NM
CVSS3.5

[原文]Radiant CMS 1.1.4 has XSS via crafted Markdown input in the part_body_content parameter to an admin/pages/*/edit resource.

CVE-2018-5212(发布:2018-01-04 13:29:00)NM
CVSS3.5

[原文]The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload_thumbnail (aka File Thumbnail) parameter in an edit action to wp-admin/post.php.

CVE-2018-5213(发布:2018-01-04 13:29:00)NM
CVSS3.5

[原文]The Simple Download Monitor plugin before 3.5.4 for WordPress has XSS via the sdm_upload (aka Downloadable File) parameter in an edit action to wp-admin/post.php.

CVE-2018-5075(发布:2018-01-03 15:29:00)NM
CVSS3.5

[原文]Online Ticket Booking has XSS via the admin/snacks_edit.php snacks_name parameter.

CVE-2015-7324(发布:2017-12-27 14:29:00)NMP
CVSS4.3

[原文]Multiple cross-site scripting (XSS) vulnerabilities in helpers/comment.php in the StackIdeas Komento (com_komento) component before 2.0.5 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) img or (2) url tag of a new comment.

12345678下一页尾页 第1页 / 共1232页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站