Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2019-05-16	CVE-2019-11033	Cross-site Scripting vulnerability in Applaudsolutions Applaud HCM 4.0.42+ Applaud HCM 4.0.42+ uses HTML tag fields for HTML inputs in a form. network applaudsolutions CWE-79	4.3
2019-05-16	CVE-2018-1975	Cross-site Scripting vulnerability in IBM Rational Doors web Access IBM Rational DOORS Web Access 9.5.1 through 9.5.2.9, and 9.6 through 9.6.1.9 is vulnerable to cross-site scripting. network ibm CWE-79	3.5
2019-05-16	CVE-2019-12136	Cross-site Scripting vulnerability in Boostio Boostnote 0.11.15 There is XSS in BoostIO Boostnote 0.11.15 via a label named mermaid, as demonstrated by a crafted SRC attribute of an IFRAME element. network boostio CWE-79	3.5
2019-05-15	CVE-2019-10111	Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. network gitlab CWE-79	3.5
2019-05-15	CVE-2019-1733	Cross-site Scripting vulnerability in Cisco Nx-Os A vulnerability in the NX API (NX-API) Sandbox interface for Cisco NX-OS Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the NX-API Sandbox interface of an affected device. network cisco CWE-79	3.5
2019-05-15	CVE-2019-3602	Cross-site Scripting vulnerability in Mcafee Network Security Manager Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML. network low complexity mcafee CWE-79	4.8
2019-05-15	CVE-2016-10719	Cross-site Scripting vulnerability in Tp-Link Archer Cr700 Firmware 1.0.6 TP-Link Archer CR-700 1.0.6 devices have an XSS vulnerability that can be introduced into the admin account through a DHCP request, allowing the attacker to steal the cookie information, which contains the base64 encoded username and password. network tp-link CWE-79	4.3
2019-05-15	CVE-2014-9919	Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. network bilboplanet CWE-79	4.3
2019-05-15	CVE-2014-9918	Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. network bilboplanet CWE-79	4.3
2019-05-15	CVE-2014-9917	Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. network bilboplanet CWE-79	4.3