Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-03-05 | CVE-2019-0668 | Cross-site Scripting vulnerability in Microsoft Sharepoint Enterprise Server 2013/2016 An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'. | 6.5 |
2019-03-05 | CVE-2019-9576 | Cross-site Scripting vulnerability in Adenion Blog2Social The Blog2Social plugin before 5.0.3 for WordPress allows wp-admin/admin.php?page=blog2social-ship XSS. | 4.3 |
2019-03-05 | CVE-2019-9575 | Cross-site Scripting vulnerability in Quizandsurveymaster Quiz and Survey Master 6.0.4 The Quiz And Survey Master plugin 6.0.4 for WordPress allows wp-admin/admin.php?page=mlw_quiz_results quiz_id XSS. | 4.3 |
2019-03-05 | CVE-2019-6565 | Cross-site Scripting vulnerability in Moxa products Moxa IKS and EDS fails to properly validate user input, giving unauthenticated and authenticated attackers the ability to perform XSS attacks, which may be used to send a malicious script. | 6.1 |
2019-03-05 | CVE-2019-6528 | Cross-site Scripting vulnerability in Psigridconnect products PSI GridConnect GmbH Telecontrol Gateway and Smart Telecontrol Unit family, IEC104 Security Proxy versions Telecontrol Gateway 3G Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Gateway XS-MU Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Gateway VM Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Smart Telecontrol Unit TCG Versions 5.0.27, 5.1.19, 6.0.16 and prior, and IEC104 Security Proxy Version 2.2.10 and prior The web application browser interprets input as active HTML, JavaScript, or VBScript, which could allow an attacker to execute arbitrary code. | 6.5 |
2019-03-05 | CVE-2019-4029 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. | 5.4 |
2019-03-05 | CVE-2019-4028 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. | 5.4 |
2019-03-05 | CVE-2019-4027 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 5.2.0.1 through 6.0.0.0 is vulnerable to cross-site scripting. | 5.4 |
2019-03-05 | CVE-2019-6229 | Cross-site Scripting vulnerability in Apple products A logic issue was addressed with improved validation. | 4.3 |
2019-03-05 | CVE-2019-6228 | Cross-site Scripting vulnerability in Apple Iphone OS and Safari A cross-site scripting issue existed in Safari. | 4.3 |