Export limit exceeded: 351755 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 46040 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (46040 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-22582 | 1 Danfoss | 2 Ak-em100, Ak-em100 Firmware | 2025-01-09 | 9 Critical |
| The Danfoss AK-EM100 web applications allow for Reflected Cross-Site Scripting. | ||||
| CVE-2023-6103 | 1 Intelbras | 2 Rx 1500, Rx 1500 Firmware | 2025-01-08 | 2.4 Low |
| A vulnerability has been found in Intelbras RX 1500 1.1.9 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /WiFi.html of the component SSID Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-245065 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2023-47697 | 1 Wp-eventmanager | 1 Wp Event Manager | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Event Manager WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin <= 3.1.39 versions. | ||||
| CVE-2023-47696 | 1 Gravitymaster | 1 Product Enquiry For Woocommerce | 2025-01-08 | 7.1 High |
| Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Gravity Master Product Enquiry for WooCommerce plugin <= 3.0 versions. | ||||
| CVE-2023-47695 | 1 Scribit | 1 Shortcodes Finder | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Scribit Shortcodes Finder plugin <= 1.5.3 versions. | ||||
| CVE-2023-47690 | 1 Antonbond | 1 Additional Order Filters For Woocommerce | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Anton Bond Additional Order Filters for WooCommerce plugin <= 1.10 versions. | ||||
| CVE-2023-47684 | 1 Themepunch | 1 Essential Grid | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ThemePunch OHG Essential Grid plugin <= 3.1.0 versions. | ||||
| CVE-2023-47680 | 1 Qodeinteractive | 1 Qi Addons For Elementor | 2025-01-08 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Qode Interactive Qi Addons For Elementor plugin <= 1.6.3 versions. | ||||
| CVE-2023-47673 | 1 Thecrowned | 1 Post Pay Counter | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Stefano Ottolenghi Post Pay Counter plugin <= 2.784 versions. | ||||
| CVE-2023-47665 | 1 Plainviewplugins | 1 Plainview Protect Passwords | 2025-01-08 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in edward_plainview Plainview Protect Passwords plugin <= 1.4 versions. | ||||
| CVE-2023-47662 | 1 Goldbroker | 1 Live Gold Price \& Silver Price Charts Widgets | 2025-01-08 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GoldBroker.Com Live Gold Price & Silver Price Charts Widgets plugin <= 2.4 versions. | ||||
| CVE-2023-47710 | 1 Ibm | 1 Security Guardium | 2025-01-08 | 5.4 Medium |
| IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 271525. | ||||
| CVE-2023-34408 | 1 Dokuwiki | 1 Dokuwiki | 2025-01-08 | 5.4 Medium |
| DokuWiki before 2023-04-04a allows XSS via RSS titles. | ||||
| CVE-2023-33763 | 1 Simpleredak | 1 Simpleredak | 2025-01-08 | 6.1 Medium |
| eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /scheduler/index.php. | ||||
| CVE-2023-33761 | 1 Simpleredak | 1 Simpleredak | 2025-01-08 | 6.1 Medium |
| eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /view/cb/format_642.php. | ||||
| CVE-2023-33731 | 1 Escanav | 1 Escan Management Console | 2025-01-08 | 6.1 Medium |
| Reflected Cross Site Scripting (XSS) in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the URL directly. | ||||
| CVE-2023-33408 | 1 Minical | 1 Minical | 2025-01-08 | 5.4 Medium |
| Minical 1.0.0 is vulnerable to Cross Site Scripting (XSS). The vulnerability exists due to insufficient input validation in the application's user input handling in the security_helper.php file. | ||||
| CVE-2023-28705 | 1 Openfind | 1 Mail2000 | 2025-01-08 | 5.4 Medium |
| Openfind Mail2000 has insufficient filtering special characters of email content of its content filtering function. A remote attacker can exploit this vulnerability using phishing emails that contain malicious web pages injected with JavaScript. When users access the system and open the email, it triggers an XSS (Reflected Cross-site scripting) attack. | ||||
| CVE-2023-3086 | 1 Teampass | 1 Teampass | 2025-01-08 | 9.0 Critical |
| Cross-site Scripting (XSS) - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9. | ||||
| CVE-2023-3067 | 1 Trilium Project | 1 Trilium | 2025-01-08 | 5.4 Medium |
| Cross-site Scripting (XSS) - Stored in GitHub repository zadam/trilium prior to 0.59.4. | ||||