Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-26 | CVE-2018-20484 | Cross-site Scripting vulnerability in Zohocorp Manageengine Adselfservice Plus 5.7 Zoho ManageEngine ADSelfService Plus 5.7 before build 5702 has XSS in the self-update layout implementation. | 6.1 |
| 2018-12-26 | CVE-2018-0724 | Cross-site Scripting vulnerability in Qnap Q'Center Virtual Appliance 1.8.1014 Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0723. | 6.1 |
| 2018-12-26 | CVE-2018-0723 | Cross-site Scripting vulnerability in Qnap Q'Center Virtual Appliance 1.8.1014 Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0724. | 6.1 |
| 2018-12-26 | CVE-2018-20476 | Cross-site Scripting vulnerability in S-Cms 3.0 An issue was discovered in S-CMS 3.0. | 6.1 |
| 2018-12-25 | CVE-2018-20464 | Cross-site Scripting vulnerability in Cmsmadesimple CMS Made Simple 2.2.8 There is a reflected XSS vulnerability in the CMS Made Simple 2.2.8 admin/myaccount.php. | 6.1 |
| 2018-12-25 | CVE-2018-20462 | Cross-site Scripting vulnerability in Jsmol2Wp Project Jsmol2Wp 1.07 An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. | 6.1 |
| 2018-12-25 | CVE-2018-20454 | Cross-site Scripting vulnerability in 74Cms 4.2.111 An issue was discovered in 74cms v4.2.111. | 6.1 |
| 2018-12-25 | CVE-2018-20448 | Cross-site Scripting vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI. | 5.4 |
| 2018-12-24 | CVE-2018-8917 | Cross-site Scripting vulnerability in Synology Diskstation Manager Cross-site scripting (XSS) vulnerability in info.cgi in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote attackers to inject arbitrary web script or HTML via the host parameter. | 5.4 |
| 2018-12-24 | CVE-2018-8918 | Cross-site Scripting vulnerability in Synology Router Manager Cross-site scripting (XSS) vulnerability in info.cgi in Synology Router Manager (SRM) before 1.1.7-6941 allows remote attackers to inject arbitrary web script or HTML via the host parameter. | 5.4 |