Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2021-07-20 CVE-2021-36746 Cross-Site Scripting vulnerability in Blackboard Learn
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor.
network
blackboard CWE-79
3.5
2021-07-20 CVE-2021-36747 Cross-Site Scripting vulnerability in Blackboard Learn
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Feedback to Learner form.
network
blackboard CWE-79
3.5
2021-07-19 CVE-2021-24436 The W3 Total Cache WordPress plugin before 2.1.4 was vulnerable to a reflected Cross-Site Scripting (XSS) security vulnerability within the "extension" parameter in the Extensions dashboard, which is output in an attribute without being escaped first. 0.0
2021-07-19 CVE-2021-24452 The W3 Total Cache WordPress plugin before 2.1.5 was affected by a reflected Cross-Site Scripting (XSS) issue within the "extension" parameter in the Extensions dashboard, when the 'Anonymously track usage to improve product quality' setting is enabled, as the parameter is output in a JavaScript context without proper escaping. 0.0
2021-07-19 CVE-2021-24482 The Related Posts for WordPress plugin through 2.0.4 does not sanitise its heading_text and CSS settings, allowing high privilege users (admin) to set XSS payloads in them, leading to Stored Cross-Site Scripting issues. 0.0
2021-07-16 CVE-2021-21801 Cross-Site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
advantech CWE-79
4.3
2021-07-16 CVE-2021-21802 Cross-Site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
advantech CWE-79
4.3
2021-07-16 CVE-2021-21803 Cross-Site Scripting vulnerability in Advantech R-Seenet 2.4.12
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications.
network
advantech CWE-79
4.3
2021-07-15 CVE-2021-20524 Cross-Site Scripting vulnerability in multiple products
IBM Security Verify Access Docker 10.0.0 is vulnerable to cross-site scripting.
network
ibm docker CWE-79
3.5
2021-07-14 CVE-2020-18145 Cross-Site Scripting vulnerability in Baidu Umeditor 1.2.3
Cross Site Scripting (XSS) vulnerability in umeditor v1.2.3 via /public/common/umeditor/php/getcontent.php.
network
baidu CWE-79
4.3