VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-11-15
CVE-2024-45609
Cross-site Scripting vulnerability in Glpi-Project Glpi
GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing.
network
low complexity
glpi-project
CWE-79
6.1
6.1
2024-11-15
CVE-2024-43417
Cross-site Scripting vulnerability in Glpi-Project Glpi
GLPI is a free asset and IT management software package.
network
low complexity
glpi-project
CWE-79
6.1
6.1
2024-11-15
CVE-2024-43418
Cross-site Scripting vulnerability in Glpi-Project Glpi
GLPI is a free asset and IT management software package.
network
low complexity
glpi-project
CWE-79
6.1
6.1
2024-11-15
CVE-2024-41678
Cross-site Scripting vulnerability in Glpi-Project Glpi
GLPI is a free asset and IT management software package.
network
low complexity
glpi-project
CWE-79
6.1
6.1
2024-11-15
CVE-2024-50655
Cross-site Scripting vulnerability in Emlog
emlog pro <=2.3.18 is vulnerable to Cross Site Scripting (XSS), which allows attackers to write malicious JavaScript code in published articles.
network
low complexity
emlog
CWE-79
5.4
5.4
2024-11-15
CVE-2022-20663
A vulnerability in the web-based management interface of Cisco Secure Network Analytics, formerly Stealthwatch Enterprise, could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of the affected software.
network
low complexity
CWE-79
6.1
6.1
2024-11-15
CVE-2022-20948
A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient user input validation.
network
low complexity
CWE-79
5.4
5.4
2024-11-15
CVE-2023-20060
A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly validate user-supplied input.
network
low complexity
CWE-79
6.1
6.1
2024-11-15
CVE-2024-11246
Cross-site Scripting vulnerability in Anisha Farmacia 1.0
A vulnerability, which was classified as problematic, was found in code-projects Farmacia 1.0.
network
low complexity
anisha
CWE-79
5.4
5.4
2024-11-15
CVE-2024-50355
Cross-site Scripting vulnerability in Librenms
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system.
network
low complexity
librenms
CWE-79
4.8
4.8
«
Previous
1
2
...
75
76
77
(current)
78
79
...
1825
1826
»
Next