Export limit exceeded: 350468 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 45914 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (45914 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-40717 | 1 Fortinet | 1 Fortitester | 2024-11-21 | 5 Medium |
| A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to access the database via shell commands. | ||||
| CVE-2023-40705 | 1 I-pro | 1 Video Insight | 2024-11-21 | 5.4 Medium |
| Stored cross-site scripting vulnerability in Map setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script. | ||||
| CVE-2023-40684 | 1 Ibm | 1 Content Navigator | 2024-11-21 | 4.6 Medium |
| IBM Content Navigator 3.0.11, 3.0.13, and 3.0.14 with IBM Daeja ViewOne Virtual is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 264019. | ||||
| CVE-2023-40681 | 1 Groundhogg | 1 Groundhogg | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Groundhogg Inc. Groundhogg plugin <= 2.7.11.10 versions. | ||||
| CVE-2023-40677 | 1 Gopiplus | 1 Vertical Marquee | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy Vertical marquee plugin <= 7.1 versions. | ||||
| CVE-2023-40676 | 1 Wp-slimstat | 1 Slimstat Analytics | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jason Crouse, VeronaLabs Slimstat Analytics plugin <= 5.0.8 versions. | ||||
| CVE-2023-40675 | 1 Pluginops | 1 Landing Page Builder | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PluginOps Landing Page Builder plugin <= 1.5.1.2 versions. | ||||
| CVE-2023-40669 | 1 Twinpictures | 1 Collapse-o-matic | 2024-11-21 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in twinpictures, baden03 Collapse-O-Matic plugin <= 1.8.5.5 versions. | ||||
| CVE-2023-40668 | 1 Pdfcrowd | 1 Save As Pdf | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd plugin <= 2.16.0 versions. | ||||
| CVE-2023-40667 | 1 Getlasso | 1 Simple Urls | 2024-11-21 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Lasso Simple URLs plugin <= 117 versions. | ||||
| CVE-2023-40665 | 1 Pdfcrowd | 1 Save As Image | 2024-11-21 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Pdfcrowd Save as Image plugin by Pdfcrowd plugin <= 2.16.0 versions. | ||||
| CVE-2023-40664 | 1 Rednao | 1 Smart Donations | 2024-11-21 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in RedNao Donations Made Easy – Smart Donations plugin <= 4.0.12 versions. | ||||
| CVE-2023-40659 | 1 Joomboost | 1 Easy Quick Contact | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Easy Quick Contact module for Joomla. | ||||
| CVE-2023-40658 | 1 Deconf | 1 Clicky Analytics Dashboard | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Clicky Analytics Dashboard module for Joomla. | ||||
| CVE-2023-40657 | 1 Artio | 1 Joomdoc | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Joomdoc component for Joomla. | ||||
| CVE-2023-40656 | 1 Plasma-web | 1 Quickform | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Quickform component for Joomla. | ||||
| CVE-2023-40628 | 1 Extplorer | 1 Extplorer | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the Extplorer component for Joomla. | ||||
| CVE-2023-40627 | 1 Mlwebtechnologies | 1 Livingword | 2024-11-21 | 6.1 Medium |
| A reflected XSS vulnerability was discovered in the LivingWord component for Joomla. | ||||
| CVE-2023-40624 | 1 Sap | 1 Netweaver Application Server Abap | 2024-11-21 | 5.5 Medium |
| SAP NetWeaver AS ABAP (applications based on Unified Rendering) - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 702, SAP_BASIS 731, allows an attacker to inject JavaScript code that can be executed in the web-application. An attacker could thereby control the behavior of this web-application. | ||||
| CVE-2023-40618 | 1 Openknowledgemaps | 1 Head Start | 2024-11-21 | 6.1 Medium |
| A reflected cross-site scripting (XSS) vulnerability in OpenKnowledgeMaps Head Start versions 4, 5, 6, 7 as well as Visual Project Explorer 1.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the 'service' parameter in 'headstart_snapshot.php'. | ||||