Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2018-10-02 CVE-2018-1440 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2018-1439 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2018-1405 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2018-1404 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2018-1403 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2018-1395 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-02 CVE-2017-1649 Cross-site Scripting vulnerability in IBM Rational Quality Manager
IBM Rational Quality Manager (RQM) 5.0 through 5.02 and 6.0 through 6.0.6 are vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2018-10-01 CVE-2018-17874 Cross-site Scripting vulnerability in Expressionengine
ExpressionEngine before 4.3.5 has reflected XSS.
network
low complexity
expressionengine CWE-79
6.1
6.1
2018-10-01 CVE-2018-17868 Cross-site Scripting vulnerability in Dasan H660Gw Firmware
DASAN H660GW devices have Stored XSS in the Port Forwarding functionality.
network
low complexity
dasan CWE-79
4.8
4.8
2018-10-01 CVE-2015-9270 Cross-site Scripting vulnerability in Theholidaycalendar Holiday Calendar
XSS exists in the the-holiday-calendar plugin before 1.11.3 for WordPress via the thc-month parameter.
network
low complexity
theholidaycalendar CWE-79
6.1
6.1