Export limit exceeded: 47104 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (47104 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-20808 | 1 Sixapart | 1 Movable Type | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in Search screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series), Movable Type 6.8.0 and earlier (Movable Type 6 Series), Movable Type Advanced 7 r.4903 and earlier (Movable Type Advanced 7 Series), Movable Type Premium 1.44 and earlier, and Movable Type Premium Advanced 1.44 and earlier) allows remote attackers to inject arbitrary script or HTML via unspecified vectors. | ||||
| CVE-2021-20807 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.0.0 to 3.1.9 allows a remote attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20805 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20800 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20799 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20798 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20797 | 1 Cybozu | 1 Remote Service Manager | 2024-11-21 | 5.4 Medium |
| Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox. | ||||
| CVE-2021-20792 | 1 Expresstech | 1 Quiz And Survey Master | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in Quiz And Survey Master versions prior to 7.1.14 allows a remote attacker to inject arbitrary script via unspecified vectors. | ||||
| CVE-2021-20787 | 1 Groupsession | 3 Groupsession, Groupsession Bycloud, Groupsession Zion | 2024-11-21 | 4.8 Medium |
| Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prior to ver5.1.0) allows a remote attacker to inject an arbitrary script by sending a specially crafted request to a specific URL. | ||||
| CVE-2021-20785 | 1 Groupsession | 3 Groupsession, Groupsession Bycloud, Groupsession Zion | 2024-11-21 | 4.8 Medium |
| Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prior to ver5.1.0) allows a remote attacker to inject an arbitrary script by sending a specially crafted request to a specific URL. | ||||
| CVE-2021-20774 | 1 Cybozu | 1 Garoon | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in some functions of E-mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20771 | 1 Cybozu | 1 Garoon | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in some functions of E-Mail of Cybozu Garoon 4.0.0 to 5.5.0 allows a remote attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20770 | 1 Cybozu | 1 Garoon | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in Message of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20769 | 1 Cybozu | 1 Garoon | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.6.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20767 | 1 Cybozu | 1 Garoon | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in Full Text Search of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20766 | 1 Cybozu | 1 Garoon | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in Message of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20765 | 1 Cybozu | 1 Garoon | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in Bulletin of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20753 | 1 Cybozu | 1 Garoon | 2024-11-21 | 5.4 Medium |
| Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20752 | 1 Ikalka Rss Reader Project | 1 Ikalka Rss Reader | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in IkaIka RSS Reader all versions allows a remote attacker to inject an arbitrary script via unspecified vectors. | ||||
| CVE-2021-20751 | 1 Ec-cube | 1 Ec-cube | 2024-11-21 | 6.1 Medium |
| Cross-site scripting vulnerability in EC-CUBE EC-CUBE 4.0.0 to 4.0.5-p1 (EC-CUBE 4 series) allows a remote attacker to inject an arbitrary script by leading an administrator or a user to a specially crafted page and to perform a specific operation. | ||||