Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-01 | CVE-2018-20953 | Cross-site Scripting vulnerability in Cpanel cPanel before 68.0.27 allows self XSS in the WHM listips interface (SEC-389). | 4.3 |
| 2019-08-01 | CVE-2018-20951 | Cross-site Scripting vulnerability in Cpanel cPanel before 68.0.27 allows self XSS in WHM Spamd Startup Config (SEC-387). | 4.3 |
| 2019-08-01 | CVE-2018-20950 | Cross-site Scripting vulnerability in Cpanel cPanel before 68.0.27 allows self stored XSS in WHM Account Transfer (SEC-386). | 4.3 |
| 2019-08-01 | CVE-2018-20949 | Cross-site Scripting vulnerability in Cpanel cPanel before 68.0.27 allows self XSS in WHM Apache Configuration Include Editor (SEC-385). | 4.3 |
| 2019-08-01 | CVE-2018-20948 | Cross-site Scripting vulnerability in Cpanel cPanel before 68.0.27 allows self XSS in cPanel Backup Restoration (SEC-383). | 4.3 |
| 2019-08-01 | CVE-2016-10827 | Cross-site Scripting vulnerability in Cpanel cPanel before 55.9999.141 allows self stored XSS in WHM Edit System Mail Preferences (SEC-96). | 3.5 |
| 2019-08-01 | CVE-2016-10822 | Cross-site Scripting vulnerability in Cpanel cPanel before 55.9999.141 allows self XSS in X3 Reseller Branding Images (SEC-88). | 3.5 |
| 2019-08-01 | CVE-2018-20935 | Cross-site Scripting vulnerability in Cpanel cPanel before 70.0.23 allows stored XSS in via a WHM "Reset a DNS Zone" action (SEC-412). | 3.5 |
| 2019-08-01 | CVE-2018-20933 | Cross-site Scripting vulnerability in Cpanel cPanel before 70.0.23 has Stored XSS via an WHM Edit DNS Zone action (SEC-410). | 3.5 |
| 2019-08-01 | CVE-2018-20928 | Cross-site Scripting vulnerability in Cpanel cPanel before 70.0.23 allows stored XSS via the cpaddons vendor interface (SEC-391). | 4.3 |