Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-20 | CVE-2018-1000868 | Cross-site Scripting vulnerability in Webidsupport Webid WeBid version up to current version 1.2.2 contains a Cross Site Scripting (XSS) vulnerability in user_login.php, register.php that can result in Javascript execution in the user's browser, injection of malicious markup into the page. | 6.1 |
| 2018-12-20 | CVE-2018-1000860 | Cross-site Scripting vulnerability in PHPipam phpipam version 1.3.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in The value of the phpipamredirect cookie is copied into an HTML tag on the login page encapsulated in single quotes. | 4.7 |
| 2018-12-20 | CVE-2018-1000856 | Cross-site Scripting vulnerability in Domainmod DomainMOD version 4.09.03 and above. | 4.8 |
| 2018-12-20 | CVE-2018-1000855 | Cross-site Scripting vulnerability in Basecamp Easymon easymon version 1.4 and earlier contains a Cross Site Scripting (XSS) vulnerability in Endpoint where monitoring is mounted that can result in Reflected XSS that affects Firefox. | 6.1 |
| 2018-12-20 | CVE-2018-1000848 | Cross-site Scripting vulnerability in Wampserver Wampserver version prior to version 3.1.5 contains a Cross Site Scripting (XSS) vulnerability in index.php localhost page that can result in very low. | 6.1 |
| 2018-12-20 | CVE-2018-1000847 | Cross-site Scripting vulnerability in Freshdns Project Freshdns FreshDNS version 1.0.3 and prior contains a Cross Site Scripting (XSS) vulnerability in Account data form; Zone editor that can result in Execution of attacker's JavaScript code in victim's session. | 5.4 |
| 2018-12-20 | CVE-2018-1000842 | Cross-site Scripting vulnerability in Fatfreecrm FatFreeCRM version <=0.14.1, >=0.15.0 <=0.15.1, >=0.16.0 <=0.16.3, >=0.17.0 <=0.17.2, ==0.18.0 contains a Cross Site Scripting (XSS) vulnerability in commit 6d60bc8ed010c4eda05d6645c64849f415f68d65 that can result in Javascript execution. | 6.1 |
| 2018-12-20 | CVE-2018-1000841 | Cross-site Scripting vulnerability in Zend Zendto Zend.To version Prior to 5.15-1 contains a Cross Site Scripting (XSS) vulnerability in The verify.php page that can result in An attacker could execute arbitrary Javascript code in the context of the victim's browser.. | 6.1 |
| 2018-12-20 | CVE-2018-1000826 | Cross-site Scripting vulnerability in Microweber Microweber version <= 1.0.7 contains a Cross Site Scripting (XSS) vulnerability in Admin login form template that can result in Execution of JavaScript code. | 6.1 |
| 2018-12-20 | CVE-2018-1000816 | Cross-site Scripting vulnerability in Grafana 5.2.4/5.3.0 Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. | 5.4 |