映射到 CWE-79 的搜索结果 (7787)

CVE-2018-6588(发布:2018-03-29 09:29:00)NMP
CVSS4.3

[原文]CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer.

CVE-2018-9120(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post.

CVE-2018-9121(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment.

CVE-2018-9122(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Reflected Cross-Site Scripting via the term parameter to the /search URI.

CVE-2018-9123(发布:2018-03-29 01:29:00)NMP
CVSS3.5

[原文]In Crea8social 2018.2, there is Stored Cross-Site Scripting via a User Profile.

CVE-2018-0190(发布:2018-03-28 18:29:02)NM
CVSS4.3

[原文]Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. The vulnerabilities are due to insufficient input validation of certain parameters that are passed to the affected software via the web UI. An attacker could exploit these vulnerabilities by persuading a user of the affected UI to access a malicious link or by intercepting a user request for the affected UI and injecting malicious code into the request. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected UI or allow the attacker to access sensitive browser-based information on the user's system. Cisco Bug IDs: CSCuz38591, CSCvb09530, CSCvb10022.

首页上一页23456789下一页尾页 第4页 / 共1298页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站