Export limit exceeded: 47169 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (47169 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-36384 1 Booking Calendar Project 1 Booking Calendar 2024-11-21 7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in CodePeople Booking Calendar Contact Form plugin <= 1.2.40 versions.
CVE-2023-36383 1 Mage-people 1 Event Manager And Tickets Selling For Woocommerce 2024-11-21 5.9 Medium
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 3.9.5 versions.
CVE-2023-36376 1 Phpgurukul 1 Hostel Management System 2024-11-21 4.8 Medium
Cross-Site Scripting (XSS) vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section.
CVE-2023-36317 1 Oretnom23 1 Student Study Center Desk Management System 2024-11-21 4.8 Medium
Cross Site Scripting (XSS) vulnerability in sourcecodester Student Study Center Desk Management System 1.0 allows attackers to run arbitrary code via crafted GET request to web application URL.
CVE-2023-36315 1 Phpjabbers 1 Callback Widget 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0.
CVE-2023-36314 1 Phpjabbers 1 Callback Widget 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the value-text-o_sms_email_request_message parameters of index.php in PHPJabbers Callback Widget v1.0.
CVE-2023-36313 1 Phpjabbers 1 Document Creator 2024-11-21 6.1 Medium
PHPJabbers Document Creator v1.0 is vulnerable to Cross Site Scripting (XSS) via all post parameters of "Export Requests" aside from "request_feed".
CVE-2023-36312 1 Phpjabbers 1 Callback Widget 2024-11-21 5.4 Medium
There is a Cross Site Scripting (XSS) vulnerability in the value-enum-o_bf_include_timezone parameter of index.php in PHPJabbers Callback Widget v1.0.
CVE-2023-36310 1 Phpjabbers 1 Document Creator 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0.
CVE-2023-36309 1 Phpjabbers 1 Document Creator 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0.
CVE-2023-36306 1 Adiscon 1 Loganalyzer 2024-11-21 6.1 Medium
A Cross Site Scripting (XSS) vulnerability in Adiscon Aiscon LogAnalyzer through 4.1.13 allows a remote attacker to execute arbitrary code via the asktheoracle.php, details.php, index.php, search.php, export.php, reports.php, and statistics.php components.
CVE-2023-36234 1 Netbox 1 Netbox 2024-11-21 5.4 Medium
Cross Site Scripting (XSS) vulnerability in Netbox 3.5.1, allows attackers to execute arbitrary code via Name field in device-roles/add function.
CVE-2023-36217 1 Xoops 1 Xoops 2024-11-21 9.0 Critical
Cross Site Scripting vulnerability in Xoops CMS v.2.5.10 allows a remote attacker to execute arbitrary code via the category name field of the image manager function.
CVE-2023-36211 1 Cubiclesoft 1 Barebones Cms 2024-11-21 5.4 Medium
The Barebones CMS v2.0.2 is vulnerable to Stored Cross-Site Scripting (XSS) when an authenticated user interacts with certain features on the admin panel.
CVE-2023-36159 1 Oretnom23 1 Lost And Found Information System 2024-11-21 6.1 Medium
Cross Site Scripting (XSS) vulnerability in sourcecodester Lost and Found Information System 1.0 allows remote attackers to run arbitrary code via the First Name, Middle Name and Last Name fields on the Create User page.
CVE-2023-36138 1 Phpjabbers 1 Cleaning Business Software 2024-11-21 6.1 Medium
PHPJabbers Cleaning Business Software 1.0 is vulnerable to Cross Site Scripting (XSS) via the theme parameter of preview.php.
CVE-2023-36137 1 Phpjabbers 1 Class Scheduling System 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Class Scheduling System 1.0.
CVE-2023-36126 1 Phpjabbers 1 Appointment Scheduler 2024-11-21 6.1 Medium
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Appointment Scheduler v3.0
CVE-2023-36121 1 E107 1 E107 2024-11-21 5.4 Medium
Cross Site Scripting vulnerability in e107 v.2.3.2 allows a remote attacker to execute arbitrary code via the description function in the SEO project.
CVE-2023-36081 1 Gatesair 2 Flexiva Fax 150w, Flexiva Fax 150w Firmware 2024-11-21 5.4 Medium
Cross Site Scripting vulnerability in GatesAIr Flexiva FM Transmitter/Exciter v.FAX 150W allows a remote attacker to execute arbitrary code via a crafted script to the web application dashboard.