|
201891
|
9.8 |
CRITICAL
Network
|
aaptjs_project
|
aaptjs
|
An issue was discovered in the list function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
|
CWE-78
OS Command
|
CVE-2020-36376
|
2024-11-21 14:29 |
2021-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201892
|
6.1 |
MEDIUM
Network
|
swiftfiletransfer
|
swift_file_transfer
|
Swift File Transfer Mobile v1.1.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the devicename parameter which allows attackers to execute arbitrary web scripts or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36502
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201893
|
5.4 |
MEDIUM
Network
|
sugarcrm
|
sugarcrm
|
Multiple cross-site scripting (XSS) vulnerabilities in the Support module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary a…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36501
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201894
|
5.4 |
MEDIUM
Network
|
taotesting
|
tao_assessment_platform
|
TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a cross-site scripting (XSS) vulnerability in the content parameter of the Rubric Block (Add) module. This vulnerability allo…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36499
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201895
|
5.4 |
MEDIUM
Network
|
macrob7_macs_framework_content_management_system_project
|
macrob7_macs_framework_content_management_system
|
Macrob7 Macs Framework Content Management System - 1.14f contains a cross-site scripting (XSS) vulnerability in the account reset function, which allows attackers to execute arbitrary web scripts or …
|
CWE-79
Cross-site Scripting
|
CVE-2020-36498
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201896
|
6.1 |
MEDIUM
Network
|
dedecms
|
dedecms
|
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component makehtml_homepage.php via the `filename`, `mid`, `userid`, and `templet' parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36497
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201897
|
6.1 |
MEDIUM
Network
|
dedecms
|
dedecms
|
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component sys_admin_user_edit.php via the `filename`, `mid`, `userid`, and `templet' parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36496
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201898
|
6.1 |
MEDIUM
Network
|
dedecms
|
dedecms
|
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component file_manage_view.php via the `filename`, `mid`, `userid`, and `templet' parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36495
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201899
|
6.1 |
MEDIUM
Network
|
dedecms
|
dedecms
|
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component mychannel_edit.php via the `filename`, `mid`, `userid`, and `templet' parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2020-36494
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
201900
|
5.4 |
MEDIUM
Network
|
dedecms
|
dedecms
|
DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component media_main.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` an…
|
CWE-79
Cross-site Scripting
|
CVE-2020-36493
|
2024-11-21 14:29 |
2021-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
