Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2018-20737 | Cross-site Scripting vulnerability in Wso2 products An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. | 5.4 |
| 2019-03-21 | CVE-2018-20736 | Cross-site Scripting vulnerability in Wso2 API Manager 2.6.0 An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. | 5.4 |
| 2019-03-21 | CVE-2018-20645 | Cross-site Scripting vulnerability in Basic B2B Script Project Basic B2B Script 2.0.9 PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field. | 5.4 |
| 2019-03-21 | CVE-2018-20640 | Cross-site Scripting vulnerability in Entrepreneur JOB Portal Script Project Entrepreneur JOB Portal Script 3.0.1 PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has stored Cross-Site Scripting (XSS) via the Full Name field. | 5.4 |
| 2019-03-21 | CVE-2018-20639 | Cross-site Scripting vulnerability in Entrepreneur JOB Portal Script Project Entrepreneur JOB Portal Script 3.0.1 PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has HTML injection via the Search Bar. | 6.1 |
| 2019-03-21 | CVE-2018-20636 | Cross-site Scripting vulnerability in Chartered Accountant : Auditor Website Project Chartered Accountant : Auditor Website 2.0.1 PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has HTML injection via the First Name field. | 5.4 |
| 2019-03-21 | CVE-2018-20632 | Cross-site Scripting vulnerability in Advance B2B Script Project Advance B2B Script 2.1.4 PHP Scripts Mall Advance B2B Script 2.1.4 has stored Cross-Site Scripting (XSS) via the FIRST NAME or LAST NAME field. | 5.4 |
| 2019-03-21 | CVE-2018-20627 | Cross-site Scripting vulnerability in Consumer Reviews Script Project Consumer Reviews Script 4.0.3 PHP Scripts Mall Consumer Reviews Script 4.0.3 has HTML injection via the search box. | 5.4 |
| 2019-03-21 | CVE-2018-20212 | Cross-site Scripting vulnerability in Twiki 6.0.2 bin/statistics in TWiki 6.0.2 allows cross-site scripting (XSS) via the webs parameter. | 6.1 |
| 2019-03-21 | CVE-2018-20141 | Cross-site Scripting vulnerability in Abantecart 1.2.12 AbanteCart 1.2.12 has reflected cross-site scripting (XSS) via the sort parameter, as demonstrated by a /apparel--accessories?sort= substring. | 6.1 |