Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-27 | CVE-2019-13235 | Cross-site Scripting vulnerability in Alkacon Opencms Apollo Template 10.5.4/10.5.5 In the Alkacon OpenCms Apollo Template 10.5.4 and 10.5.5, there is XSS in the Login form. | 4.3 |
| 2019-08-27 | CVE-2019-13234 | Cross-site Scripting vulnerability in Alkacon Opencms Apollo Template 10.5.4/10.5.5 In the Alkacon OpenCms Apollo Template 10.5.4 and 10.5.5, there is XSS in the search engine. | 4.3 |
| 2019-08-27 | CVE-2018-21001 | Cross-site Scripting vulnerability in Bologer Anycomment 0.0.1/0.0.2/0.0.32 The anycomment plugin before 0.0.33 for WordPress has XSS. | 4.3 |
| 2019-08-27 | CVE-2017-18590 | Cross-site Scripting vulnerability in Bestwebsoft Timesheet The timesheet plugin before 0.1.5 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-27 | CVE-2016-10934 | Cross-site Scripting vulnerability in Check Email Project Check Email The check-email plugin before 0.5.2 for WordPress has XSS. | 4.3 |
| 2019-08-27 | CVE-2015-9349 | Cross-site Scripting vulnerability in Cksource Ckeditor The ckeditor-for-wordpress plugin before 4.5.3.1 for WordPress has reflected XSS in the "built-in (old)" file browser. | 4.3 |
| 2019-08-27 | CVE-2015-9347 | Cross-site Scripting vulnerability in Plot Plotly 1.0.0/1.0.1/1.0.2 The wp-plotly plugin before 1.0.3 for WordPress has XSS by authors. | 4.3 |
| 2019-08-27 | CVE-2015-9346 | Cross-site Scripting vulnerability in Codepeople Polls CP The cp-polls plugin before 1.0.5 for WordPress has XSS. | 4.3 |
| 2019-08-27 | CVE-2015-9342 | Cross-site Scripting vulnerability in Impress WP Rollback The wp-rollback plugin before 1.2.3 for WordPress has XSS. | 4.3 |
| 2019-08-27 | CVE-2014-10395 | Cross-site Scripting vulnerability in Codepeople Polls CP The cp-polls plugin before 1.0.1 for WordPress has XSS in the votes list. | 4.3 |