Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-03	CVE-2019-3754	Cross-site Scripting vulnerability in Dell products Dell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC VNXe3200 versions prior to 3.1.10.9946299 contain a reflected cross-site scripting vulnerability on the cas/logout page. network dell CWE-79	4.3
2019-09-03	CVE-2019-15870	Cross-site Scripting vulnerability in Carspot Project Carspot The CarSpot theme before 2.1.7 for WordPress has stored XSS via the Phone Number field. network carspot-project CWE-79	3.5
2019-09-03	CVE-2019-15869	Cross-site Scripting vulnerability in Jobcareer Project Jobcareer The JobCareer theme before 2.5.1 for WordPress has stored XSS. network jobcareer-project CWE-79	3.5
2019-09-03	CVE-2019-15864	Cross-site Scripting vulnerability in Holest Breadcrumbs BY Menu The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has XSS. network holest CWE-79	4.3
2019-08-30	CVE-2019-15842	Cross-site Scripting vulnerability in Easy PDF Restaurant Menu Upload Project Easy PDF Restaurant Menu Upload 1.0/1.1/1.1.1 The easy-pdf-restaurant-menu-upload plugin before 1.1.2 for WordPress has XSS. network easy-pdf-restaurant-menu-upload-project CWE-79	4.3
2019-08-30	CVE-2019-15838	Cross-site Scripting vulnerability in Kunalnagar Custom 404 PRO The custom-404-pro plugin before 3.2.8 for WordPress has reflected XSS, a different vulnerability than CVE-2019-14789. network low complexity kunalnagar CWE-79	6.1
2019-08-30	CVE-2019-15837	Cross-site Scripting vulnerability in Bitwise-It Webp Express The webp-express plugin before 0.14.8 for WordPress has stored XSS. network bitwise-it CWE-79	3.5
2019-08-30	CVE-2019-15836	Cross-site Scripting vulnerability in Bootstrapped WP Ultimate Recipe The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS. network bootstrapped CWE-79	3.5
2019-08-30	CVE-2019-15833	Cross-site Scripting vulnerability in Simple Mail Address Encoder Project Simple Mail Address Encoder The simple-mail-address-encoder plugin before 1.7 for WordPress has reflected XSS. network low complexity simple-mail-address-encoder-project CWE-79	6.1
2019-08-30	CVE-2019-15830	Cross-site Scripting vulnerability in Icegram Engage The icegram plugin before 1.10.29 for WordPress has ig_cat_list XSS. network low complexity icegram CWE-79	5.4