Export limit exceeded: 45914 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (45914 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-40876 | 1 Dedecms | 1 Dedecms | 2024-11-21 | 5.4 Medium |
| DedeCMS up to and including 5.7.110 was discovered to contain a cross-site scripting (XSS) vulnerability at /dede/freelist_add.php via the title parameter. | ||||
| CVE-2023-40875 | 1 Dedecms | 1 Dedecms | 2024-11-21 | 5.4 Medium |
| DedeCMS up to and including 5.7.110 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities at /dede/vote_edit.php via the votename and votenote parameters. | ||||
| CVE-2023-40874 | 1 Dedecms | 1 Dedecms | 2024-11-21 | 5.4 Medium |
| DedeCMS up to and including 5.7.110 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities at /dede/vote_add.php via the votename and voteitem1 parameters. | ||||
| CVE-2023-40869 | 1 Moosocial | 1 Moosocial | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting vulnerability in mooSocial mooSocial Software 3.1.6 and 3.1.7 allows a remote attacker to execute arbitrary code via a crafted script to the edit_menu, copuon, and group_categorias functions. | ||||
| CVE-2023-40851 | 1 User Registration \& Login And User Management System With Admin Panel Project | 1 User Registration \& Login And User Management System With Admin Panel | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting (XSS) vulnerability in Phpgurukul User Registration & Login and User Management System With admin panel 3.0 allows attackers to run arbitrary code via fname, lname, email, and contact fields of the user registration page. | ||||
| CVE-2023-40817 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field. | ||||
| CVE-2023-40816 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field. | ||||
| CVE-2023-40815 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via the Category Creation Name Field. | ||||
| CVE-2023-40814 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Name Field. | ||||
| CVE-2023-40813 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation. | ||||
| CVE-2023-40812 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field. | ||||
| CVE-2023-40810 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via Product Name Field. | ||||
| CVE-2023-40809 | 1 Opencrx | 1 Opencrx | 2024-11-21 | 6.1 Medium |
| OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number. | ||||
| CVE-2023-40786 | 1 Hkcms | 1 Hkcms | 2024-11-21 | 5.4 Medium |
| HKcms v2.3.0.230709 is vulnerable to Cross Site Scripting (XSS) allowing administrator cookies to be stolen. | ||||
| CVE-2023-40755 | 1 Phpjabbers | 1 Callback Widget | 2024-11-21 | 6.1 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Callback Widget v1.0. | ||||
| CVE-2023-40753 | 1 Phpjabbers | 1 Ticket Support Script | 2024-11-21 | 5.4 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2. | ||||
| CVE-2023-40752 | 1 Phpjabbers | 1 Make An Offer Widget | 2024-11-21 | 6.1 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0. | ||||
| CVE-2023-40751 | 1 Phpjabbers | 1 Fundraising Script | 2024-11-21 | 6.1 Medium |
| PHPJabbers Fundraising Script v1.0 is vulnerable to Cross Site Scripting (XSS) via the "action" parameter of index.php. | ||||
| CVE-2023-40750 | 1 Phpjabbers | 1 Yacht Listing Script | 2024-11-21 | 6.1 Medium |
| There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Yacht Listing Script v1.0. | ||||
| CVE-2023-40719 | 1 Fortinet | 2 Fortianalyzer, Fortimanager | 2024-11-21 | 4.1 Medium |
| A use of hard-coded credentials vulnerability in Fortinet FortiAnalyzer and FortiManager 7.0.0 - 7.0.8, 7.2.0 - 7.2.3 and 7.4.0 allows an attacker to access Fortinet private testing data via the use of static credentials. | ||||