Medium
CVE-2019-16904
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted password for an item in a common available folder or sharing the item with an admin. (The crafted password is exploitable when viewing the ch…
Tag: Stored XSS
All CVEs associated with "Stored XSS". Page 42/45 • 5376 CVEs.
Subscribe CVEs: RSS for “Stored XSS” · RSS (High+Critical only)
About “Stored XSS”
A curated feed of “Stored XSS”-related CVEs appears below. We currently track 5376 CVEs for this tag (all time). In the last 365 days, 1195 were published. Average CVSS is 6.2 (all time; 6.4 over 365d), and 18% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'), CWE-352 - Cross-Site Request Forgery (CSRF), CWE-80 - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS).
In our taxonomy this topic maps to a MODERATE impact class. Common exploitation patterns for this weakness can lead to moderate. Use the filters to triage high risk first and validate exposure in your environment. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
2019-09-26
2019-09-25
Medium
CVE-2019-10406
Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not restrict or filter values set as Jenkins URL in the global configuration, resulting in a stored XSS vulnerability exploitable by attackers w…
Medium
CVE-2019-10404
Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the reason why a queue items is blcoked in tooltips, resulting in a stored XSS vulnerability exploitable by users able to control par…
Medium
CVE-2019-10403
Jenkins 2.196 and earlier, LTS 2.176.3 and earlier did not escape the SCM tag name on the tooltip for SCM tag actions, resulting in a stored XSS vulnerability exploitable by users able to control SCM…
Medium
CVE-2019-10402
In Jenkins 2.196 and earlier, LTS 2.176.3 and earlier, the f:combobox form control interpreted its item labels as HTML, resulting in a stored XSS vulnerability exploitable by users with permission to…
Medium
CVE-2019-10401
In Jenkins 2.196 and earlier, LTS 2.176.3 and earlier, the f:expandableTextBox form control interpreted its content as HTML when expanded, resulting in a stored XSS vulnerability exploitable by users…
2019-09-23
Medium
CVE-2019-16704
admin/infoclass_update.php in PHPMyWind 5.6 has stored XSS.
Medium
CVE-2019-16703
admin/infolist_add.php in PHPMyWind 5.6 has stored XSS.
2019-09-20
Medium
CVE-2018-11200
An issue was discovered in Mautic 2.13.1. It has Stored XSS via the company name field.
Medium
CVE-2019-16643
An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the article_edit area.
Medium
CVE-2019-14913
An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel.
2019-09-17
Medium
CVE-2016-10988
The leenkme plugin before 2.6.0 for WordPress has stored XSS via facebook_message, facebook_linkname, facebook_caption, facebook_description, default_image, or _wp_http_referer.
Medium
CVE-2016-10981
The kento-post-view-counter plugin through 2.8 for WordPress has stored XSS via kento_pvc_numbers_lang, kento_pvc_today_text, or kento_pvc_total_text.
High
CVE-2016-10974
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.
2019-09-15
Medium
CVE-2019-16334
In Bludit v3.9.2, there is a persistent XSS vulnerability in the Categories -> Add New Category -> Name field. NOTE: this may overlap CVE-2017-16636.
2019-09-11
Medium
CVE-2019-10073
The "Blog", "Forum", "Contact Us" screens of the template "ecommerce" application bundled in Apache OFBiz are weak to Stored XSS attacks. Mitigation: Upgrade to 16.11.06 or manually apply the followi…
2019-09-10
Critical
CVE-2019-15896
An issue was discovered in the LifterLMS plugin through 3.34.5 for WordPress. The upload_import function in the class.llms.admin.import.php script is prone to an unauthenticated options import vulner…
Medium
CVE-2017-18606
The avada theme before 5.1.5 for WordPress has stored XSS.
Medium
CVE-2017-18600
The formcraft3 plugin before 3.4 for WordPress has stored XSS via the "New Form > Heading > Heading Text" field.
2019-09-09
Medium
CVE-2019-6784
An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 1 of 2). Markdown fields contain a lack of input…
Medium
CVE-2019-16172
LimeSurvey before v3.17.14 allows stored XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. The attack uses a survey group in which the title contains JavaScript…
Medium
CVE-2019-5471
An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.
Medium
CVE-2019-5467
An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…
Medium
CVE-2018-21014
The buddyboss-media plugin through 3.2.3 for WordPress has stored XSS.
2019-09-06
Medium
CVE-2018-11198
An issue was discovered in Mautic 2.13.1. There is Stored XSS via the authorUrl field in config.json.
2019-09-04
Medium
CVE-2019-15814
Multiple stored XSS vulnerabilities in Sentrifugo 3.2 could allow authenticated users to inject arbitrary web script or HTML.
2019-09-03
Medium
CVE-2019-15870
The CarSpot theme before 2.1.7 for WordPress has stored XSS via the Phone Number field.
Medium
CVE-2019-15869
The JobCareer theme before 2.5.1 for WordPress has stored XSS.
2019-08-30
Medium
CVE-2019-15837
The webp-express plugin before 0.14.8 for WordPress has stored XSS.
Medium
CVE-2019-15836
The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS.
2019-08-27
Medium
CVE-2019-15644
The zoho-salesiq plugin before 1.0.9 for WordPress has stored XSS.
Medium
CVE-2019-13236
In system/workplace/ in Alkacon OpenCms 10.5.4 and 10.5.5, there are multiple Reflected and Stored XSS issues in the management interface.
2019-08-22
Medium
CVE-2019-12386
An issue was discovered in Ampache through 3.9.1. A stored XSS exists in the localplay.php LocalPlay "add instance" functionality. The injected code is reflected in the instances menu. This vulnerabi…
Medium
CVE-2019-14469
In Nexus Repository Manager before 3.18.0, users with elevated privileges can create stored XSS.
Medium
CVE-2017-18575
The newstatpress plugin before 1.2.5 for WordPress has multiple stored XSS issues.
2019-08-21
Medium
CVE-2017-18563
The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen.
Medium
CVE-2016-10896
The seo-redirection plugin before 4.3 for WordPress has stored XSS.
2019-08-15
Medium
CVE-2018-17790
Prospecta Master Data Online (MDO) 2.0 has Stored XSS.
Medium
CVE-2019-15081
OpenCart 3.x, when the attacker has login access to the admin panel, allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages.
2019-08-09
Medium
CVE-2019-14797
The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS.
2019-08-07
Medium
CVE-2019-14750
An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. Stored XSS exists in setup/install.php. It was observed that no input sanitization was provided in the firstname and lastna…
Medium
CVE-2019-14748
An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. The Ticket creation form allows users to upload files along with queries. It was found that the file-upload functionality h…
Medium
CVE-2019-14747
DWSurvey through 2019-07-22 has stored XSS via the design/my-survey-design!copySurvey.action surveyName parameter.
2019-08-06
Medium
CVE-2016-10795
cPanel before 59.9999.145 allows stored XSS in the WHM tail_upcp2.cgi interface (SEC-156).
Medium
CVE-2016-10783
cPanel before 60.0.25 allows self stored XSS in SSL_listkeys (SEC-182).
Medium
CVE-2016-10782
cPanel before 60.0.25 allows self stored XSS in postgres API1 listdbs (SEC-181).
Medium
CVE-2016-10780
cPanel before 60.0.25 allows stored XSS in the ftp_sessions API (SEC-180).
Medium
CVE-2016-10779
cPanel before 60.0.25 allows stored XSS in api1_listautoresponders (SEC-179).
Medium
CVE-2016-10778
cPanel before 60.0.25 allows self stored XSS in the listftpstable API (SEC-178).
Medium
CVE-2016-10776
cPanel before 60.0.25 allows stored XSS during the homedir removal phase of WHM Account termination (SEC-174).
2019-08-05
Medium
CVE-2019-14672
Firefly III 4.7.17.5 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the liability name field. The JavaScript code is executed upon an error condition during a visi…
Medium
CVE-2019-14670
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the bill name field. The JavaScript code is executed during rule-from-bill creation.
Medium
CVE-2019-14669
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the asset account name. The JavaScript code is executed during a visit to the audit account sta…
Medium
CVE-2019-14668
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the transaction description field. The JavaScript code is executed during deletion of a transac…
Medium
CVE-2019-14667
Firefly III 4.7.17.4 is vulnerable to multiple stored XSS issues due to the lack of filtration of user-supplied data in the transaction description field and the asset account name. The JavaScript co…
Medium
CVE-2019-14550
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed when a victim clicks on the Edit Dashboard feature present on the Homepage. An attacker can load malicious JavaScript inside t…
Medium
CVE-2019-14549
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed inside the title and breadcrumb of a newly formed entity available to all the users. A malicious user can inject JavaScript in…
Medium
CVE-2019-14548
An issue was discovered in EspoCRM before 5.6.9. Stored XSS in the body of an Article was executed when a victim opens articles received through mail. This Article can be formed by an attacker using…
Medium
CVE-2019-14547
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed when a attacker sends an attachment to admin with malicious JavaScript in the filename. This JavaScript executed when an admin…
Medium
CVE-2019-14546
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed on the Preference page as well as while sending an email when a malicious payload was inserted inside the Email Signature in t…
Medium
CVE-2017-18481
cPanel before 62.0.4 allows stored XSS in the WHM Account Suspension List interface (SEC-211).
Medium
CVE-2016-10767
cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).
2019-08-02
Medium
CVE-2017-18454
cPanel before 62.0.24 allows stored XSS in the WHM cPAddons install interface (SEC-262).
Medium
CVE-2017-18420
cPanel before 66.0.2 allows stored XSS during WHM cPAddons processing (SEC-269).
Medium
CVE-2017-18419
cPanel before 66.0.2 allows stored XSS during WHM cPAddons uninstallation (SEC-266).
Medium
CVE-2017-18418
cPanel before 66.0.2 allows stored XSS during WHM cPAddons file operations (SEC-265).
Medium
CVE-2017-18417
cPanel before 66.0.2 allows stored XSS during WHM cPAddons installation (SEC-263).
Medium
CVE-2017-18408
cPanel before 67.9999.103 allows stored XSS in WHM MySQL Password Change interfaces (SEC-282).
Medium
CVE-2017-18402
cPanel before 68.0.15 allows stored XSS during a cpaddons moderated upgrade (SEC-336).
2019-08-01
Medium
CVE-2018-20950
cPanel before 68.0.27 allows self stored XSS in WHM Account Transfer (SEC-386).
Medium
CVE-2016-10827
cPanel before 55.9999.141 allows self stored XSS in WHM Edit System Mail Preferences (SEC-96).
Medium
CVE-2018-20935
cPanel before 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action (SEC-412).
Medium
CVE-2018-20933
cPanel before 70.0.23 has Stored XSS via an WHM Edit DNS Zone action (SEC-410).
Medium
CVE-2018-20928
cPanel before 70.0.23 allows stored XSS via the cpaddons vendor interface (SEC-391).
Medium
CVE-2018-20923
cPanel before 70.0.23 allows stored XSS via a WHM Synchronize DNS Records action (SEC-377).
Medium
CVE-2018-20922
cPanel before 70.0.23 allows stored XSS via a WHM DNS Cleanup action (SEC-376).
Medium
CVE-2018-20921
cPanel before 70.0.23 allows stored XSS via a WHM "Delete a DNS Zone" action (SEC-375).
Medium
CVE-2018-20920
cPanel before 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-374).
Medium
CVE-2018-20919
cPanel before 70.0.23 allows stored XSS via a WHM Create Account action (SEC-373).
Medium
CVE-2018-20918
cPanel before 70.0.23 allows stored XSS in WHM DNS Cluster (SEC-372).
Medium
CVE-2018-20916
cPanel before 70.0.23 allows Stored XSS via a WHM Edit MX Entry (SEC-370).
Medium
CVE-2018-20915
cPanel before 70.0.23 allows stored XSS via a WHM Edit DNS Zone action (SEC-369).
Medium
CVE-2018-20901
cPanel before 71.9980.37 allows Remote-Stored XSS in WHM Save Theme Interface (SEC-400).
Medium
CVE-2016-10853
cPanel before 11.54.0.4 allows stored XSS in the WHM Feature Manager interface (SEC-86).
Medium
CVE-2018-20900
cPanel before 71.9980.37 allows stored XSS in the YUM autorepair functionality (SEC-399).
Medium
CVE-2018-20899
cPanel before 71.9980.37 allows stored XSS in the WHM cPAddons installation interface (SEC-398).
Medium
CVE-2018-20884
cPanel before 74.0.0 allows stored XSS in the WHM File Restoration interface (SEC-367).
Medium
CVE-2018-20881
cPanel before 74.0.8 allows self stored XSS on the Security Questions login page (SEC-446).
Medium
CVE-2018-20878
cPanel before 74.0.8 allows stored XSS in WHM "File and Directory Restoration" interface (SEC-441).
2019-07-31
Medium
CVE-2019-14456
Opengear console server firmware releases prior to 4.5.0 have a stored XSS vulnerability related to serial port logging. If a malicious user of an external system (connected to a serial port on an Op…
2019-07-30
Medium
CVE-2019-14406
cPanel before 78.0.18 has stored XSS in the BoxTrapper Queue Listing (SEC-493).
Medium
CVE-2018-20868
cPanel before 76.0.8 has Stored XSS in the WHM MultiPHP Manager interface (SEC-464).
Medium
CVE-2018-20866
cPanel before 76.0.8 has Stored XSS in the WHM "Reset a DNS Zone" feature (SEC-461).
Medium
CVE-2019-14390
cPanel before 82.0.2 has stored XSS in the WHM Modify Account interface (SEC-512).
Medium
CVE-2019-14386
cPanel before 82.0.2 has stored XSS in the WHM Tomcat Manager interface (SEC-504).
2019-07-29
Medium
CVE-2019-11199
Dolibarr ERP/CRM 9.0.1 was affected by stored XSS within uploaded files. These vulnerabilities allowed the execution of a JavaScript payload each time any regular user or administrative user clicked…
2019-07-28
Medium
CVE-2019-14350
EspoCRM 5.6.4 is vulnerable to stored XSS due to lack of filtration of user-supplied data in the Knowledge base. A malicious attacker can inject JavaScript code in the body parameter during api/v1/Kn…
Medium
CVE-2019-14349
EspoCRM version 5.6.4 is vulnerable to stored XSS due to lack of filtration of user-supplied data in the api/v1/Document functionality for storing documents in the account tab. An attacker can upload…
Medium
CVE-2019-14331
An issue was discovered in EspoCRM before 5.6.6. Stored XSS exists due to lack of filtration of user-supplied data in Create User. A malicious attacker can modify the firstName and lastName to contai…
Medium
CVE-2019-14330
An issue was discovered in EspoCRM before 5.6.6. Stored XSS exists due to lack of filtration of user-supplied data in Create Case. A malicious attacker can modify the firstName and lastName to contai…
Medium
CVE-2019-14329
An issue was discovered in EspoCRM before 5.6.6. There is stored XSS due to lack of filtration of user-supplied data in Create Task. A malicious attacker can modify the parameter name to contain Java…
2019-07-27
Medium
CVE-2019-14286
In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order t…
2019-07-22
Medium
CVE-2019-1010237
Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting (XSS) - CWE-79 Type 2: Stored XSS (or Persistent). The impact is: Execute code in the victim's browser. The component i…
2019-07-19
Medium
CVE-2019-12453
In MicroStrategy Web before 10.1 patch 10, stored XSS is possible in the FLTB parameter due to missing input validation.
2019-07-18
Medium
CVE-2019-13950
index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored XSS via a reply to a comment.
Medium
CVE-2019-13948
SyGuestBook A5 Version 1.2 allows stored XSS because the isValidData function in include/functions.php does not properly block XSS payloads, as demonstrated by a crafted use of the onerror attribute…
Medium
CVE-2019-13647
Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file content. The JavaScript code is executed during attachments/view/$file_id$ attach…
Medium
CVE-2019-13645
Firefly III before 4.7.17.3 is vulnerable to stored XSS due to lack of filtration of user-supplied data in image file names. The JavaScript code is executed during attachments/edit/$file_id$ attachme…
Medium
CVE-2019-13644
Firefly III before 4.7.17.1 is vulnerable to stored XSS due to lack of filtration of user-supplied data in a budget name. The JavaScript code is contained in a transaction, and is executed on the tag…
Medium
CVE-2019-13643
Stored XSS in EspoCRM before 5.6.4 allows remote attackers to execute malicious JavaScript and inject arbitrary source code into the target pages. The attack begins by storing a new stream message co…
2019-07-17
Medium
CVE-2019-13493
In Sitecore 9.0 rev 171002, Persistent XSS exists in the Media Library and File Manager. An authenticated unprivileged user can modify the uploaded file extension parameter to inject arbitrary JavaSc…
Medium
CVE-2019-12475
In MicroStrategy Web before 10.4.6, there is stored XSS in metric due to insufficient input validation.
2019-07-15
Medium
CVE-2019-1010008
OpenEnergyMonitor Project Emoncms 9.8.8 is affected by: Cross Site Scripting (XSS). The impact is: Theoretically low, but might potentially enable persistent XSS (user could embed mal. code). The com…
2019-07-10
Medium
CVE-2018-19579
GitLab EE version 11.5 is vulnerable to a persistent XSS vulnerability in the Operations page. This is fixed in 11.5.1.
Medium
CVE-2018-19493
An issue was discovered in GitLab Community and Enterprise Edition 11.x before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. There is a persistent XSS vulnerability in the environment page…
Medium
CVE-2019-12724
An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI. It allows a stored XSS attack via the $_POST['name'] parameter.
2019-07-09
Medium
CVE-2019-13070
A stored XSS vulnerability in the Agent/Center component of CyberPower PowerPanel Business Edition 3.4.0 allows a privileged attacker to embed malicious JavaScript in the SNMP trap receivers form. Up…
Medium
CVE-2019-13397
Unauthenticated Stored XSS in osTicket 1.10.1 allows a remote attacker to gain admin privileges by injecting arbitrary web script or HTML via arbitrary file extension while creating a support ticket.
2019-07-05
Medium
CVE-2019-13341
In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php (comment box), which can be used to get a user's cookie.
Medium
CVE-2019-13340
In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, CVE-2018-20…