Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-07 | CVE-2013-7467 | Cross-site Scripting vulnerability in Simplemachines Simple Machines Forum 2.0.4 Simple Machines Forum (SMF) 2.0.4 allows XSS via the index.php?action=pm;sa=settings;save sa parameter. | 6.1 |
| 2019-03-07 | CVE-2018-18816 | Cross-site Scripting vulnerability in Tibco products The repository component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, TIBCO Jaspersoft Reporting and Analytics for AWS contains a persistent cross site scripting vulnerability. | 5.4 |
| 2019-03-07 | CVE-2019-3776 | Cross-site Scripting vulnerability in Pivotal Software Operations Manager Pivotal Operations Manager, 2.1.x versions prior to 2.1.20, 2.2.x versions prior to 2.2.16, 2.3.x versions prior to 2.3.10, 2.4.x versions prior to 2.4.3, contains a reflected cross site scripting vulnerability. | 5.4 |
| 2019-03-06 | CVE-2019-9606 | Cross-site Scripting vulnerability in Personal Video Collection Script Project Personal Video Collection Script 4.0.4 PHP Scripts Mall Personal Video Collection Script 4.0.4 has Stored XSS via the "Update profile" feature. | 5.4 |
| 2019-03-06 | CVE-2019-4030 | Cross-site Scripting vulnerability in IBM products IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. | 5.4 |
| 2019-03-06 | CVE-2018-1912 | Cross-site Scripting vulnerability in IBM Rational Doors Next Generation IBM DOORS Next Generation (DNG/RRC) 6.0.2 through 6.0.6 is vulnerable to cross-site scripting. | 5.4 |
| 2019-03-06 | CVE-2018-1911 | Cross-site Scripting vulnerability in IBM Rational Doors Next Generation IBM DOORS Next Generation (DNG/RRC) 5.0 through 5.0.2 and 6.0 through 6.0.6 is vulnerable to cross-site scripting. | 5.4 |
| 2019-03-06 | CVE-2019-9595 | Cross-site Scripting vulnerability in Appcms 2.0.101 AppCMS 2.0.101 allows XSS via the upload/callback.php params parameter. | 6.1 |
| 2019-03-06 | CVE-2019-9593 | Cross-site Scripting vulnerability in Mitel Connect Onsite 18.82.2000.0 A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 18.82.2000.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter. | 6.1 |
| 2019-03-06 | CVE-2019-9592 | Cross-site Scripting vulnerability in Mitel Connect Onsite 19.45.1602.0 A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter. | 6.1 |