Fallos del tipo CWE-79
26.052 resultadosCVE-2025-52876MEDIUMIn JetBrains TeamCity before 2025.03.3 reflected XSS on the favoriteIcon page was possibleEPSS 13.6%CVE-2022-0595—Drag and Drop Multiple File Upload - Contact Form 7 < 1.3.6.3 - Unauthenticated Stored XSSEPSS 13.6%CVE-2025-52877MEDIUMIn JetBrains TeamCity before 2025.03.3 reflected XSS on diskUsageBuildsStats page was possibleEPSS 13.5%CVE-2007-4040HIGHArgument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers EPSS 13.5%CVE-2024-5410HIGHStored Cross-Site ScriptingEPSS 13.2%CVE-2025-20297MEDIUMReflected Cross-Site Scripting (XSS) on Splunk Enterprise through dashboard PDF generation componentEPSS 13.1%CVE-2024-45741MEDIUMPersistent Cross-Site Scripting (XSS) via props.conf on Splunk EnterpriseEPSS 12.9%CVE-2025-50538HIGHFlowise before 3.0.5 allows XSS via an IFRAME element when an admin views the chat log.EPSS 12.9%CVE-2025-8155MEDIUMD-Link DCS-6010L Management Application vb.htm cross site scriptingEPSS 12.7%CVE-2021-38488MEDIUMDelta Electronics DIALinkEPSS 12.3%CVE-2021-21799CRITICALCross-site scripting vulnerabilities exist in the telnet_form.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). If a useEPSS 12.3%CVE-2025-31121HIGHOpenEMR allows XSS in Patient Image featureEPSS 12.1%CVE-2015-6477MEDIUMMultiple cross-site scripting (XSS) vulnerabilities in the Wind Farm Portal application in Nordex Control 2 (NC2) SCADA 16 and earlier allowEPSS 12.0%CVE-2025-66376HIGHZimbra Collaboration (ZCS) 10 before 10.0.18 and 10.1 before 10.1.13 allows Classic UI stored XSS via Cascading Style Sheets (CSS) @import dEPSS 12.0%KEVCVE-2024-34051MEDIUMA Reflected Cross-site scripting (XSS) vulnerability located in htdocs/compta/paiement/card.php of Dolibarr before 19.0.2 allows remote attaEPSS 12.0%CVE-2023-23383HIGHService Fabric Explorer Spoofing VulnerabilityEPSS 11.7%CVE-2025-62411MEDIUMStored XSS in Alert Transport name field in LibreNMSEPSS 11.6%CVE-2023-29772MEDIUMA Cross-site scripting (XSS) vulnerability in the System Log/General Log page of the administrator web UI in ASUS RT-AC51U wireless router fEPSS 11.6%CVE-2021-38428MEDIUMDelta Electronics DIALinkEPSS 11.4%CVE-2021-24488—Post Grid < 2.1.8 - Reflected Cross-Site Scripting (XSS)EPSS 11.3%