Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2017
CVE-2015-5060
Cross-site scripting (XSS) vulnerability in anchor-cms before 0.9-dev.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-09-07
CVE-2015-7672
Cross-site scripting (XSS) vulnerability in Centreon 2.6.1 (fixed in Centreon 18.10.0 and Centreon web 2.8.27).
CVSS Score
5.4
EPSS Score
0.0
Published
2017-09-07
CVE-2015-8079
qt5-qtwebkit before 5.4 records private browsing URLs to its favicon database, WebpageIcons.db.
CVSS Score
5.3
EPSS Score
0.002
Published
2017-09-07
CVE-2017-14192
The checktitle function in controllers/member/api.php in dayrui FineCms 5.0.11 has XSS related to the module field.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-09-07
CVE-2017-14193
The oauth function in controllers/member/api.php in dayrui FineCms 5.0.11 has XSS related to the Referer HTTP header with Internet Explorer.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-09-07
CVE-2017-14194
The out function in controllers/member/Login.php in dayrui FineCms 5.0.11 has XSS related to the Referer HTTP header with Internet Explorer.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-09-07
CVE-2017-14195
The call_msg function in controllers/Form.php in dayrui FineCms 5.0.11 might have XSS related to the Referer HTTP header with Internet Explorer.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-09-07
CVE-2013-7428
The Googlemaps plugin before 3.1 for Joomla! allows remote attackers to cause a denial of service via the url parameter to plugin_googlemap2_proxy.php.
CVSS Score
7.5
EPSS Score
0.014
Published
2017-09-07
CVE-2017-1098
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 120658.
CVSS Score
5.4
EPSS Score
0.002
Published
2017-09-07
CVE-2017-1189
IBM WebSphere Portal and Web Content Manager 6.1, 7.0, and 8.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 123558.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-09-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved