Export limit exceeded: 45721 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (45721 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-46074 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the Settings Section in login panel. | ||||
| CVE-2021-46073 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the User List Section in login panel. | ||||
| CVE-2021-46072 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Service List Section in login panel. | ||||
| CVE-2021-46071 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Category List Section in login panel. | ||||
| CVE-2021-46070 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Service Requests Section in login panel. | ||||
| CVE-2021-46069 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Mechanic List Section in login panel. | ||||
| CVE-2021-46068 | 1 Vehicle Service Management System Project | 1 Vehicle Service Management System | 2024-11-21 | 4.8 Medium |
| A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the My Account Section in login panel. | ||||
| CVE-2021-46065 | 1 Zohocorp | 1 Manageengine Servicedesk Plus | 2024-11-21 | 4.8 Medium |
| A Cross-site scripting (XSS) vulnerability in Secondary Email Field in Zoho ManageEngine ServiceDesk Plus 11.3 Build 11306 allows an attackers to inject arbitrary JavaScript code. | ||||
| CVE-2021-46034 | 1 Forestblog Project | 1 Forestblog | 2024-11-21 | 6.1 Medium |
| A problem was found in ForestBlog, as of 2021-12-29, there is a XSS vulnerability that can be injected through the nickname input box. | ||||
| CVE-2021-46030 | 1 Javaquarkbbs Project | 1 Javaquarkbbs | 2024-11-21 | 5.4 Medium |
| There is a Cross Site Scripting attack (XSS) vulnerability in JavaQuarkBBS <= v2. By entering specific statements into the background tag management module, the attack statement will be stored in the database, and the next victim will be attacked when he accesses the tag module. | ||||
| CVE-2021-46025 | 1 Oneblog Project | 1 Oneblog | 2024-11-21 | 5.4 Medium |
| A Cross SIte Scripting (XSS) vulnerability exists in OneBlog <= 2.2.8. via the add function in the operation tab list in the background. | ||||
| CVE-2021-46008 | 1 Totolink | 2 A3100r, A3100r Firmware | 2024-11-21 | 8.8 High |
| In totolink a3100r V5.9c.4577, the hard-coded telnet password can be discovered from official released firmware. An attacker, who has connected to the Wi-Fi, can easily telnet into the target with root shell if the telnet is function turned on. | ||||
| CVE-2021-46005 | 1 Car Rental Management System Project | 1 Car Rental Management System | 2024-11-21 | 5.4 Medium |
| Sourcecodester Car Rental Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via vehicalorcview parameter. | ||||
| CVE-2021-45919 | 1 Std42 | 1 Elfinder | 2024-11-21 | 5.4 Medium |
| Studio 42 elFinder through 2.1.31 allows XSS via an SVG document. | ||||
| CVE-2021-45913 | 1 Controlup | 1 Controlup Agent | 2024-11-21 | 7.2 High |
| A hardcoded key in ControlUp Real-Time Agent (cuAgent.exe) before 8.2.5 may allow a potential attacker to run OS commands via a WCF channel. | ||||
| CVE-2021-45906 | 1 Openwrt | 1 Openwrt | 2024-11-21 | 5.4 Medium |
| OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen. | ||||
| CVE-2021-45905 | 1 Openwrt | 1 Openwrt | 2024-11-21 | 5.4 Medium |
| OpenWrt 21.02.1 allows XSS via the Traffic Rules Name screen. | ||||
| CVE-2021-45904 | 1 Openwrt | 1 Openwrt | 2024-11-21 | 5.4 Medium |
| OpenWrt 21.02.1 allows XSS via the Port Forwards Add Name screen. | ||||
| CVE-2021-45903 | 1 Salesagility | 1 Suitecrm | 2024-11-21 | 6.1 Medium |
| A persistent cross-site scripting (XSS) issue in the web interface of SuiteCRM before 7.10.35, and 7.11.x and 7.12.x before 7.12.2, allows a remote attacker to introduce arbitrary JavaScript via attachments upload, a different vulnerability than CVE-2021-39267 and CVE-2021-39268. | ||||
| CVE-2021-45895 | 1 Netgen | 1 Tags Bundle | 2024-11-21 | 6.1 Medium |
| Netgen Tags Bundle 3.4.x before 3.4.11 and 4.0.x before 4.0.15 allows XSS in the Tags Admin interface. | ||||