Search Results (83783 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2020-23660 1 Webtareas Project 1 Webtareas 2024-11-21 5.4 Medium
webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search."
CVE-2020-23659 1 Webport 1 Web Port 2024-11-21 5.4 Medium
WebPort-v1.19.17121 is affected by Cross Site Scripting (XSS) on the "connections" feature.
CVE-2020-23658 1 Php-fusion 1 Php-fusion 2024-11-21 5.4 Medium
PHP-Fusion 9.03.60 is affected by Cross Site Scripting (XSS) via infusions/member_poll_panel/poll_admin.php.
CVE-2020-23657 1 Naviwebs 1 Navigatecms 2024-11-21 5.4 Medium
NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration."
CVE-2020-23656 1 Naviwebs 1 Navigatecms 2024-11-21 5.4 Medium
NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Content."
CVE-2020-23655 1 Naviwebs 1 Navigatecms 2024-11-21 5.4 Medium
NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration."
CVE-2020-23654 1 Naviwebs 1 Navigatecms 2024-11-21 5.4 Medium
NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) via the module "Shop."
CVE-2020-23644 1 Jizhicms 1 Jizhicms 2024-11-21 6.1 Medium
XSS exists in JIZHICMS 1.7.1 via index.php/Error/index?msg={XSS] to Home/c/ErrorController.php.
CVE-2020-23643 1 Jizhicms 1 Jizhicms 2024-11-21 6.1 Medium
XSS exists in JIZHICMS 1.7.1 via index.php/Wechat/checkWeixin?signature=1&echostr={XSS] to Home/c/WechatController.php.
CVE-2020-23639 1 Moxa 2 Vport 461, Vport 461 Firmware 2024-11-21 9.8 Critical
A command injection vulnerability exists in Moxa Inc VPort 461 Series Firmware Version 3.4 or lower that could allow a remote attacker to execute arbitrary commands in Moxa's VPort 461 Series Industrial Video Servers.
CVE-2020-23618 1 Xtendtech 1 Voice Logger 2024-11-21 6.1 Medium
A reflected cross site scripting (XSS) vulnerability in Xtend Voice Logger 1.0 allows attackers to execute arbitrary web scripts or HTML, via the path of the error page.
CVE-2020-23617 1 Totolink 4 N100re, N100re Firmware, N200re and 1 more 2024-11-21 6.1 Medium
A cross site scripting (XSS) vulnerability in the error page of Totolink N200RE and N100RE Routers 2.0 allows attackers to execute arbitrary web scripts or HTML via SCRIPT element.
CVE-2020-23576 1 Laborator 1 Neon 2024-11-21 5.4 Medium
Laborator Neon dashboard v3 is affected by stored Cross Site Scripting (XSS) via the chat tab.
CVE-2020-23560 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptions_W+0x000000000001bcab.
CVE-2020-23559 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptions_W+0x0000000000007d7f.
CVE-2020-23558 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptions_W+0x0000000000007f4b.
CVE-2020-23557 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptions_W+0x000000000000755d.
CVE-2020-23556 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007e28.
CVE-2020-23555 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007e6e.
CVE-2020-23554 1 Irfanview 1 Irfanview 2024-11-21 7.8 High
IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!GetPlugInInfo+0x0000000000007e20.