Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-21550 Cross-site Scripting vulnerability in Steve-Community Steve
SteVe is an open platform that implements different version of the OCPP protocol for Electric Vehicle charge points, acting as a central server for management of registered charge points.
network
low complexity
steve-community CWE-79
6.1
6.1
2024-08-12 CVE-2024-27443 Cross-site Scripting vulnerability in Zimbra Collaboration
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0.
network
low complexity
zimbra CWE-79
6.1
6.1
2024-08-12 CVE-2024-33533 Cross-site Scripting vulnerability in Zimbra Collaboration
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0, issue 1 of 2.
network
low complexity
zimbra CWE-79
5.4
5.4
2024-08-12 CVE-2024-33536 Cross-site Scripting vulnerability in Zimbra Collaboration
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0.
network
low complexity
zimbra CWE-79
5.4
5.4
2024-08-12 CVE-2024-40473 Cross-site Scripting vulnerability in Mayurik Best House Rental Management System 1.0
A Stored Cross Site Scripting (XSS) vulnerability was found in "manage_houses.php" in SourceCodester Best House Rental Management System v1.0.
network
low complexity
mayurik CWE-79
5.4
5.4
2024-08-12 CVE-2024-40474 Cross-site Scripting vulnerability in Mayurik Best House Rental Management System 1.0
A Reflected Cross Site Scripting (XSS) vulnerability was found in "edit-cate.php" in SourceCodester House Rental Management System v1.0.
network
low complexity
mayurik CWE-79
5.4
5.4
2024-08-12 CVE-2024-40478 Cross-site Scripting vulnerability in Jayesh Online Exam System 1.0
A Stored Cross Site Scripting (XSS) vulnerability was found in "/admin/afeedback.php" in Kashipara Online Exam System v1.0, which allows remote attackers to execute arbitrary code via "rname" and "email" parameter fields
network
low complexity
jayesh CWE-79
5.4
5.4
2024-08-12 CVE-2024-40481 Cross-site Scripting vulnerability in PHPgurukul OLD AGE Home Management System 1.0
A Stored Cross Site Scripting (XSS) vulnerability was found in "/admin/view-enquiry.php" in PHPGurukul Old Age Home Management System v1.0, which allows remote attackers to execute arbitrary code via the Contact Us page "message" parameter.
network
low complexity
phpgurukul CWE-79
5.4
5.4
2024-08-12 CVE-2024-40484 Cross-site Scripting vulnerability in PHPgurukul OLD AGE Home Management System 1.0
A Reflected Cross Site Scripting (XSS) vulnerability was found in "/oahms/search.php" in PHPGurukul Old Age Home Management System v1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter.
network
low complexity
phpgurukul CWE-79
6.1
6.1
2024-08-12 CVE-2024-41481 Cross-site Scripting vulnerability in Typora
Typora before 1.9.3 Markdown editor has a cross-site scripting (XSS) vulnerability via the Mermaid component.
network
low complexity
typora CWE-79
6.1
6.1