Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-05-16 | CVE-2019-11033 | Cross-site Scripting vulnerability in Applaudsolutions Applaud HCM 4.0.42+ Applaud HCM 4.0.42+ uses HTML tag fields for HTML inputs in a form. | 4.3 |
2019-05-16 | CVE-2018-1975 | Cross-site Scripting vulnerability in IBM Rational Doors web Access IBM Rational DOORS Web Access 9.5.1 through 9.5.2.9, and 9.6 through 9.6.1.9 is vulnerable to cross-site scripting. | 3.5 |
2019-05-16 | CVE-2019-12136 | Cross-site Scripting vulnerability in Boostio Boostnote 0.11.15 There is XSS in BoostIO Boostnote 0.11.15 via a label named mermaid, as demonstrated by a crafted SRC attribute of an IFRAME element. | 3.5 |
2019-05-15 | CVE-2019-10111 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2. | 3.5 |
2019-05-15 | CVE-2019-1733 | Cross-site Scripting vulnerability in Cisco Nx-Os A vulnerability in the NX API (NX-API) Sandbox interface for Cisco NX-OS Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the NX-API Sandbox interface of an affected device. | 3.5 |
2019-05-15 | CVE-2019-3602 | Cross-site Scripting vulnerability in Mcafee Network Security Manager Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML. | 4.8 |
2019-05-15 | CVE-2016-10719 | Cross-site Scripting vulnerability in Tp-Link Archer Cr700 Firmware 1.0.6 TP-Link Archer CR-700 1.0.6 devices have an XSS vulnerability that can be introduced into the admin account through a DHCP request, allowing the attacker to steal the cookie information, which contains the base64 encoded username and password. | 4.3 |
2019-05-15 | CVE-2014-9919 | Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. | 4.3 |
2019-05-15 | CVE-2014-9918 | Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. | 4.3 |
2019-05-15 | CVE-2014-9917 | Cross-site Scripting vulnerability in Bilboplanet 2.0 An issue was discovered in Bilboplanet 2.0. | 4.3 |