Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 3:16 p.m.6 views

CVE-2020-18084

Cross Site Scripting XSS in yzmCMS v5.2 allows remote attackers to execute arbitrary code by injecting commands into the "referer" field of a POST request to the component "/member/index/login.html" when logging in...

6.1CVSS6.9AI score0.00638EPSS
Exploits1
CVE
CVEadded 2021/04/30 8:37 p.m.78 views

CVE-2020-18084

CVE-2020-18084 affects yzmCMS v5.2 and enables a Cross-Site Scripting (XSS) vulnerability in the login flow. An attacker can inject commands into the referer field of a POST to the component path “/member/index/login.html” during login, potentially leading to arbitrary code execution on the victi...

6.1CVSS6.4AI score0.00638EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/10/09 6:0 p.m.42 views

CVE-2018-18084

CVE-2018-18084 affects DuomiCMS 3.0. A SQL injection exists in the ajax.php file, demonstrated by the uid parameter. The issue is rated with CVSS v3.1: base score 9.8 (CRITICAL), vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating network attack needs no authentication or user interac...

9.8CVSS9.8AI score0.0025EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2018/02/22 12:0 a.m.28 views

Atlassian Confluence < 6.3.4 usermacros Reflected XSS (CVE-2017-18084)

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 6.3.4. It is, therefore, affected by a reflected cross-site scripting vulnerability in the usermacros resource. Note that Nessus has not tested for this issue but has instead...

4.8CVSS5.1AI score0.00129EPSS
Exploits0References2
CVE
CVEadded 2018/02/02 2:0 p.m.63 views

CVE-2017-18084

CVE-2017-18084 affects Atlassian Confluence Server

4.8CVSS4.9AI score0.00129EPSS
Exploits0References2Affected Software1
Atlassian
Atlassianadded 2018/02/02 12:11 a.m.28 views

XSS in the usermacros resource through the description of a macro - CVE-2017-18084

The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the description of a macro. Acknowledgements Atlassian would like to credit Veit Hailperin @fenceposterro...

4.8CVSS3.3AI score0.00129EPSS
Exploits0
Atlassian
Atlassianadded 2018/02/02 12:11 a.m.65 views

XSS in the usermacros resource through the description of a macro - CVE-2017-18084

The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the description of a macro. Acknowledgements Atlassian would like to credit Veit Hailperin @fenceposterro...

4.8CVSS5.1AI score0.00129EPSS
Exploits0Affected Software1
Check Point Advisories
Check Point Advisoriesadded 2016/02/01 12:0 a.m.3 views

jQuery Suspicious URL Redirection (CVE-2018-18084)

A suspicious URL redirection to a possibly malicious jQuery domain has been encountered. By injecting JavaScript code, an attacker may redirect the user to an attacker-controlled website...

7.5CVSS1.4AI score0.0025EPSS
Exploits1
Rows per page
Query Builder