Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-20 | CVE-2021-44091 | Cross-site Scripting vulnerability in Multi Restaurant Table Reservation System Project Multi Restaurant Table Reservation System 1.0 A Cross-Site Scripting (XSS) vulnerability exists in Courcecodester Multi Restaurant Table Reservation System 1.0 in register.php via the (1) fullname, (2) phone, and (3) address parameters. | 3.5 |
| 2022-01-20 | CVE-2021-46026 | mysiteforme, as of 19-12-2022, is vulnerable to Cross Site Scripting (XSS) via the add blog tag function in the blog tag in the background blog management. network CWE-79 | 3.5 |
| 2022-01-19 | CVE-2021-46025 | Cross-site Scripting vulnerability in Oneblog Project Oneblog A Cross SIte Scripting (XSS) vulnerability exists in OneBlog <= 2.2.8. | 3.5 |
| 2022-01-19 | CVE-2021-23225 | Cross-site Scripting vulnerability in Cacti 1.1.38 Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the "new_username" field during creation of a new user via "Copy" method at user_admin.php. | 3.5 |
| 2022-01-19 | CVE-2021-3816 | Cross-site Scripting vulnerability in Cacti 1.1.38 Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php. | 3.5 |
| 2022-01-19 | CVE-2022-23045 | Cross-site Scripting vulnerability in PHPipam 1.4.4 PhpIPAM v1.4.4 allows an authenticated admin user to inject persistent JavaScript code inside the "Site title" parameter while updating the site settings. | 3.5 |
| 2022-01-19 | CVE-2022-0243 | Cross-site Scripting (XSS) - Stored in NuGet OrchardCore.Application.Cms.Targets prior to 1.2.2. network CWE-79 | 3.5 |
| 2022-01-19 | CVE-2021-44299 | Cross-site Scripting vulnerability in Naviwebs Navigate CMS 2.9.4 A reflected cross-site scripting (XSS) vulnerability in \lib\packages\themes\themes.php of Navigate CMS v2.9.4 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload. | 3.5 |
| 2022-01-19 | CVE-2022-0274 | Cross-site Scripting (XSS) - Stored in NuGet OrchardCore.Application.Cms.Targets prior to 1.2.2. network CWE-79 | 3.5 |
| 2022-01-19 | CVE-2021-46030 | Cross-site Scripting vulnerability in Javaquarkbbs Project Javaquarkbbs There is a Cross Site Scripting attack (XSS) vulnerability in JavaQuarkBBS <= v2. | 3.5 |