映射到 CWE-79 的搜索结果 (7847)

CVE-2018-0551(发布:2018-04-16 10:29:00)NM
CVSS3.5

[原文]Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.6.1 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2018-9169(发布:2018-04-16 05:58:12)NM
CVSS3.5

[原文]Z-BlogPHP 1.5.1 has XSS via the zb_users/plugin/AppCentre/plugin_edit.php app_id parameter. The component must be accessed directly by an administrator, or through CSRF.

CVE-2017-0365(发布:2018-04-13 12:29:00)NM
CVSS2.6

[原文]Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a XSS vulnerability in SearchHighlighter::highlightText() with non-default configurations.

CVE-2018-6958(发布:2018-04-13 09:29:00)NMPS
CVSS4.3

[原文]VMware vRealize Automation (vRA) prior to 7.3.1 contains a vulnerability that may allow for a DOM-based cross-site scripting (XSS) attack. Exploitation of this issue may lead to the compromise of the vRA user's workstation.

CVE-2018-6870(发布:2018-04-12 18:29:00)NM
CVSS4.3

[原文]Reflected XSS exists in PHP Scripts Mall Website Seller Script 2.0.3 via the Listings Search feature.

CVE-2018-6900(发布:2018-04-12 18:29:00)NM
CVSS3.5

[原文]PHP Scripts Mall Website Broker Script 3.0.6 has XSS via the Last Name field on the My Profile page.

首页上一页12345678下一页尾页 第2页 / 共1308页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站