Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2022-01-20 CVE-2021-44091 Cross-site Scripting vulnerability in Multi Restaurant Table Reservation System Project Multi Restaurant Table Reservation System 1.0
A Cross-Site Scripting (XSS) vulnerability exists in Courcecodester Multi Restaurant Table Reservation System 1.0 in register.php via the (1) fullname, (2) phone, and (3) address parameters.
3.5
2022-01-20 CVE-2021-46026 mysiteforme, as of 19-12-2022, is vulnerable to Cross Site Scripting (XSS) via the add blog tag function in the blog tag in the background blog management.
network
CWE-79
3.5
2022-01-19 CVE-2021-46025 Cross-site Scripting vulnerability in Oneblog Project Oneblog
A Cross SIte Scripting (XSS) vulnerability exists in OneBlog <= 2.2.8.
3.5
2022-01-19 CVE-2021-23225 Cross-site Scripting vulnerability in Cacti 1.1.38
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the "new_username" field during creation of a new user via "Copy" method at user_admin.php.
network
cacti CWE-79
3.5
2022-01-19 CVE-2021-3816 Cross-site Scripting vulnerability in Cacti 1.1.38
Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary HTML in the group_prefix field during the creation of a new group via "Copy" method at user_group_admin.php.
network
cacti CWE-79
3.5
2022-01-19 CVE-2022-23045 Cross-site Scripting vulnerability in PHPipam 1.4.4
PhpIPAM v1.4.4 allows an authenticated admin user to inject persistent JavaScript code inside the "Site title" parameter while updating the site settings.
network
phpipam CWE-79
3.5
2022-01-19 CVE-2022-0243 Cross-site Scripting (XSS) - Stored in NuGet OrchardCore.Application.Cms.Targets prior to 1.2.2.
network
CWE-79
3.5
2022-01-19 CVE-2021-44299 Cross-site Scripting vulnerability in Naviwebs Navigate CMS 2.9.4
A reflected cross-site scripting (XSS) vulnerability in \lib\packages\themes\themes.php of Navigate CMS v2.9.4 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload.
network
naviwebs CWE-79
3.5
2022-01-19 CVE-2022-0274 Cross-site Scripting (XSS) - Stored in NuGet OrchardCore.Application.Cms.Targets prior to 1.2.2.
network
CWE-79
3.5
2022-01-19 CVE-2021-46030 Cross-site Scripting vulnerability in Javaquarkbbs Project Javaquarkbbs
There is a Cross Site Scripting attack (XSS) vulnerability in JavaQuarkBBS <= v2.
3.5