CGI abuses : XSS Family for Nessus

Page 2 of 14 670 total

IDNameSeverity
90445ManageEngine Firewall Analyzer Multiple XSSMedium
90351VMware vRealize Business Unspecified Stored XSS (VMSA-2016-0003)Low
90247Apache Jetspeed Portal URI Path Reflected XSSMedium
88965Nessus Web UI Scanned Content Stored XSSMedium
88904Tenable Nessus < 6.5.5 Host Details Scan Results XSSLow
88842Fortinet FortiWeb 5.1.2 < 5.3.5 Autolearn Configuration Multiple XSSMedium
88840Fortinet FortiADC Model D < 4.2 Theme Login Page XSSMedium
86804ManageEngine AssetExplorer < 6.1.0 Build 6113 Multiple XSSMedium
86471Fortinet FortiManager FortiOS 5.0.x >= 5.0.3 and < 5.0.11 Dataset Reports XSSMedium
86470Fortinet FortiAnalyzer FortiOS 5.0.x < 5.0.11 / 5.2.x < 5.2.2 Dataset Reports XSSMedium
86445DNN (DotNetNuke) < 7.4.2 Multiple VulnerabilitiesMedium
86020Joomla! 3.4.x < 3.4.4 Login Module XSSMedium
85962Splunk Enterprise 6.2.x < 6.2.6 / Splunk Light 6.2.x < 6.2.6 Splunk Web XSSMedium
85380MS15-087: Vulnerability in UDDI Services Could Allow Elevation of Privilege (3082459) (uncredentialed check)Medium
85221Atlassian JIRA 4.2.x < 5.1.1 Multiple XSSMedium
85217Atlassian JIRA 4.2.x < 4.4 / 4.3.x < 4.4 Multiple XSSMedium
83520IBM Rational License Key Server Administration and Reporting Tool 8.1.4.x < 8.1.4.7 XSSLow
83475Adobe/Apache Flex ASDoc Tool XSSMedium
83351WordPress Multiple XSSMedium
82827WP Super Cache Plugin for WordPress wp-cache.php Cache List Content Handling XSSMedium
81699MyBB < 1.6.15 Video MyCode XSSMedium
81670Fortinet FortiMail < 4.3.9 / 5.0.8 / 5.1.5 / 5.2.3 XSSMedium
81552Symantec Data Center Security Server 'WCUnsupportedClass.jsp' XSSMedium
81550Symantec Data Center Security Server 'SSO-Error.jsp' XSS (SYM15-001)Medium
81385FancyBox Plugin for WordPress 'mfbfw' Parameter Persistent XSSMedium
81383Fortinet FortiAuthenticator 'operation' Parameter XSSMedium
81319DNN (DotNetNuke) < 7.4.0 Unspecified Persistent XSSMedium
80553W3 Total Cache Plugin For WordPress Cache Key XSSMedium
79743LogAnalyzer < 3.6.6 index.php / detail.php 'hostname' Parameter XSSMedium
79624Apache Traffic Server Host HTTP XSSMedium
79387LiveZilla < 5.3.0.8 XSSMedium
79385Google Calendar Events Plugin for WordPress 'admin-ajax.php' XSSMedium
79253Fortinet FortiAnalyzer / FortiManager < 5.0.7 Multiple Unspecified XSS (FG-IR-14-033)Medium
78738phpMyAdmin 4.0.x < 4.0.10.5 / 4.1.x < 4.1.14.6 / 4.2.x < 4.2.10.1 Multiple XSS (PMASA-2014-12)Low
78233phpMyAdmin 4.0.x < 4.0.10.4 / 4.1.x < 4.1.14.5 / 4.2.x < 4.2.9.1 'ENUM' Value XSS (PMASA-2014-11)Low
78109MediaWiki < 1.19.20 / 1.22.12 / 1.23.5 'includes/OutputPage.php' XSSMedium
78063MediaWiki < 1.19.19 / 1.22.11 / 1.23.4 SVG Upload and CSS XSSMedium
77983Moodle Multiple XSSMedium
77707Webmin < 1.690 Multiple XSSMedium
77706Usermin < 1.600 Multiple VulnerabilitiesMedium
77684Riverbed SteelApp (Stingray) Traffic Manager < 9.7 Multiple XSSMedium
77538IBM WebSphere Portal Unspecified XSS (PI16174)Low
77537IBM WebSphere Portal Unspecified XSS (PI16127)Low
77536IBM WebSphere Portal Unspecified XSS (PI18845)Low
77480ManageEngine EventLog Analyzer 'j_username' XSSMedium
77305phpMyAdmin 4.0.x < 4.0.10.2 / 4.1.x < 4.1.14.3 / 4.2.x < 4.2.7.1 Multiple XSS Vulnerabilities (PMASA-2014-8 - PMASA-2014-9)Low
77302Gurock TestRail < 3.1.3 XSSLow
77220Fortinet FortiWeb 5.x < 5.2.1 Multiple XSS VulnerabilitiesMedium
76943CKEditor Preview Plugin Unspecified XSSMedium
76278phpMyAdmin 4.1.x < 4.1.14.1 / 4.2.x < 4.2.4 Navigation Hiding Items Multiple XSS (PMASA-2014-3)Low

Page 2 of 14 670 total