Export limit exceeded: 47205 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (47205 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-40753 | 1 Phpjabbers | 1 Ticket Support Script | 2024-11-21 | 5.4 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2. | ||||
| CVE-2023-40752 | 1 Phpjabbers | 1 Make An Offer Widget | 2024-11-21 | 6.1 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0. | ||||
| CVE-2023-40751 | 1 Phpjabbers | 1 Fundraising Script | 2024-11-21 | 6.1 Medium |
| PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting (XSS) via the "action" parameter of index.php. | ||||
| CVE-2023-40750 | 1 Phpjabbers | 1 Yacht Listing Script | 2024-11-21 | 6.1 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0. | ||||
| CVE-2023-40719 | 1 Fortinet | 2 Fortianalyzer, Fortimanager | 2024-11-21 | 4.1 Medium |
| A use of hard-coded credentials vulnerability in Fortinet FortiAnalyzer and FortiManager 7.0.0 - 7.0.8, 7.2.0 - 7.2.3 and 7.4.0 allows an attacker to access Fortinet private testing data via the use of static credentials. | ||||
| CVE-2023-40717 | 1 Fortinet | 1 Fortitester | 2024-11-21 | 5 Medium |
| A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to access the database via shell commands. | ||||
| CVE-2023-40705 | 1 I-pro | 1 Video Insight | 2024-11-21 | 5.4 Medium |
| Stored cross-site scripting vulnerability in Map setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script. | ||||
| CVE-2023-40684 | 1 Ibm | 1 Content Navigator | 2024-11-21 | 4.6 Medium |
| IBM Content Navigator 3.0.11, 3.0.13, and 3.0.14 with IBM Daeja ViewOne Virtual is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 264019. | ||||
| CVE-2023-40681 | 1 Groundhogg | 1 Groundhogg | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Groundhogg Inc. Groundhogg plugin <= 2.7.11.10 versions. | ||||
| CVE-2023-40677 | 1 Gopiplus | 1 Vertical Marquee | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Vertical marquee plugin <= 7.1 versions. | ||||
| CVE-2023-40676 | 1 Wp-slimstat | 1 Slimstat Analytics | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jason Crouse, VeronaLabs Slimstat Analytics plugin <= 5.0.8 versions. | ||||
| CVE-2023-40675 | 1 Pluginops | 1 Landing Page Builder | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PluginOps Landing Page Builder plugin <= 1.5.1.2 versions. | ||||
| CVE-2023-40669 | 1 Twinpictures | 1 Collapse-o-matic | 2024-11-21 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in twinpictures, baden03 Collapse-O-Matic plugin <= 1.8.5.5 versions. | ||||
| CVE-2023-40668 | 1 Pdfcrowd | 1 Save As Pdf | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd plugin <= 2.16.0 versions. | ||||
| CVE-2023-40667 | 1 Getlasso | 1 Simple Urls | 2024-11-21 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Lasso Simple URLs plugin <= 117 versions. | ||||
| CVE-2023-40665 | 1 Pdfcrowd | 1 Save As Image | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as Image plugin by Pdfcrowd plugin <= 2.16.0 versions. | ||||
| CVE-2023-40664 | 1 Rednao | 1 Smart Donations | 2024-11-21 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in RedNao Donations Made Easy – Smart Donations plugin <= 4.0.12 versions. | ||||
| CVE-2023-40659 | 1 Joomboost | 1 Easy Quick Contact | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Easy Quick Contact module for Joomla. | ||||
| CVE-2023-40658 | 1 Deconf | 1 Clicky Analytics Dashboard | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Clicky Analytics Dashboard module for Joomla. | ||||
| CVE-2023-40657 | 1 Artio | 1 Joomdoc | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Joomdoc component for Joomla. | ||||