Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-28 | CVE-2012-6717 | Cross-site Scripting vulnerability in Redirection The redirection plugin before 2.2.12 for WordPress has XSS, a different issue than CVE-2011-4562. | 4.3 |
| 2019-08-28 | CVE-2011-5329 | Cross-site Scripting vulnerability in Redirection The redirection plugin before 2.2.9 for WordPress has XSS in the admin menu, a different issue than CVE-2011-4562. | 4.3 |
| 2019-08-27 | CVE-2019-15700 | Cross-site Scripting vulnerability in Frappe public/js/frappe/form/footer/timeline.js in Frappe Framework 12 through 12.0.8 does not escape HTML in the timeline and thus is affected by crafted "changed value of" text. | 4.3 |
| 2019-08-27 | CVE-2019-13274 | Cross-site Scripting vulnerability in multiple products In Xymon through 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter. | 4.3 |
| 2019-08-27 | CVE-2017-18591 | Cross-site Scripting vulnerability in Gdragon GD Rating System The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php. | 4.3 |
| 2019-08-27 | CVE-2016-10936 | Cross-site Scripting vulnerability in Wp-Polls Project Wp-Polls The wp-polls plugin before 2.73.1 for WordPress has XSS via the Poll bar option. | 4.3 |
| 2019-08-27 | CVE-2015-9350 | Cross-site Scripting vulnerability in Slickremix Feed Them Social The feed-them-social plugin before 1.7.0 for WordPress has reflected XSS in the Facebook Feeds load more button. | 4.3 |
| 2019-08-27 | CVE-2019-15644 | Cross-site Scripting vulnerability in Zoho Salesiq The zoho-salesiq plugin before 1.0.9 for WordPress has stored XSS. | 4.3 |
| 2019-08-27 | CVE-2019-15643 | Cross-site Scripting vulnerability in Etoilewebdesign Ultimate FAQ The ultimate-faqs plugin before 1.8.22 for WordPress has XSS. | 4.3 |
| 2019-08-27 | CVE-2019-13236 | Cross-site Scripting vulnerability in Alkacon Opencms 10.5.4/10.5.5 In system/workplace/ in Alkacon OpenCms 10.5.4 and 10.5.5, there are multiple Reflected and Stored XSS issues in the management interface. | 4.3 |