Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-07 | CVE-2019-7567 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 An issue was discovered in Waimai Super Cms 20150505. | 6.1 |
| 2019-02-06 | CVE-2019-7547 | Cross-site Scripting vulnerability in Topnew Sidu 6.0 An issue was discovered in SIDU 6.0. | 4.8 |
| 2019-02-06 | CVE-2019-7546 | Cross-site Scripting vulnerability in Topnew Sidu 6.0 An issue was discovered in SIDU 6.0. | 6.1 |
| 2019-02-06 | CVE-2019-7545 | Cross-site Scripting vulnerability in Dbninja In DbNinja 3.2.7, the Add Host function of the Manage Hosts pages has a Stored Cross-site Scripting (XSS) vulnerability in the User Name field. | 5.4 |
| 2019-02-06 | CVE-2019-7544 | Cross-site Scripting vulnerability in Mywebsql An issue was discovered in MyWebSQL 3.7. | 5.4 |
| 2019-02-06 | CVE-2019-7543 | Cross-site Scripting vulnerability in Kindsoft Kindeditor 4.1.11 In KindEditor 4.1.11, the php/demo.php content1 parameter has a reflected Cross-site Scripting (XSS) vulnerability. | 6.1 |
| 2019-02-06 | CVE-2015-9282 | Cross-site Scripting vulnerability in Grafana Piechart-Panel The Pie Chart Panel plugin through 2019-01-02 for Grafana is vulnerable to XSS via legend data or tooltip data. | 6.1 |
| 2019-02-06 | CVE-2018-20758 | Cross-site Scripting vulnerability in Modx Revolution MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description. | 5.4 |
| 2019-02-06 | CVE-2018-20757 | Cross-site Scripting vulnerability in Modx Revolution MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name. | 6.1 |
| 2019-02-06 | CVE-2018-20756 | Cross-site Scripting vulnerability in Modx Revolution MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs. | 6.1 |