Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-10-30 | CVE-2019-18205 | Cross-site Scripting vulnerability in Zucchetti Infobusiness 4.4.1 Multiple Reflected Cross-site Scripting (XSS) vulnerabilities exist in Zucchetti InfoBusiness before and including 4.4.1. | 4.3 |
2019-10-30 | CVE-2018-18678 | Cross-site Scripting vulnerability in SIR Gnuboard GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "board group extra contents" parameter, aka the adm/boardgroup_form_update.php gr_1~10 parameter. | 6.1 |
2019-10-29 | CVE-2019-9758 | Cross-site Scripting vulnerability in Labkey Server 19.1.0 An issue was discovered in LabKey Server 19.1.0. | 3.5 |
2019-10-29 | CVE-2019-13066 | Cross-site Scripting vulnerability in Sahipro Sahi PRO 8.0.0 Sahi Pro 8.0.0 has a script manager arena located at _s_/dyn/pro/DBReports with many different areas that are vulnerable to reflected XSS, by updating a script's Script Name, Suite Name, Base URL, Android, iOS, Scripts Run, Origin Machine, or Comment field. | 4.3 |
2019-10-29 | CVE-2018-10727 | Cross-site Scripting vulnerability in Fabrikar Fabrik Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header. | 4.3 |
2019-10-29 | CVE-2011-0428 | Cross-site Scripting vulnerability in Ikiwiki Cross Site Scripting (XSS) in ikiwiki before 3.20110122 could allow remote attackers to insert arbitrary JavaScript due to insufficient checking in comments. | 4.3 |
2019-10-28 | CVE-2010-4245 | Cross-site Scripting vulnerability in Translatehouse Pootle pootle 2.0.5 has XSS via 'match_names' parameter | 4.3 |
2019-10-28 | CVE-2010-4240 | Cross-site Scripting vulnerability in Tiki Tikiwiki Cms/Groupware 5.2 Tiki Wiki CMS Groupware 5.2 has XSS | 4.3 |
2019-10-28 | CVE-2009-4900 | Cross-site Scripting vulnerability in Pixelpost 1.7.15 pixelpost 1.7.1 has XSS | 4.3 |
2019-10-28 | CVE-2019-14928 | Cross-site Scripting vulnerability in multiple products An issue was discovered on Mitsubishi Electric Europe B.V. | 5.4 |