Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2018-09-28	CVE-2018-11073	Cross-site Scripting vulnerability in multiple products RSA Authentication Manager versions prior to 8.3 P3 contain a stored cross-site scripting vulnerability in the Operations Console. network low complexity rsa emc CWE-79	4.8
2018-09-28	CVE-2018-15365	Cross-site Scripting vulnerability in Trendmicro Deep Discovery Inspector A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. network low complexity trendmicro CWE-79	5.4
2018-09-28	CVE-2018-17574	Cross-site Scripting vulnerability in Ymfe Yapi 1.3.22 An issue was discovered in YMFE YApi 1.3.23. network low complexity ymfe CWE-79	5.4
2018-09-28	CVE-2018-17571	Cross-site Scripting vulnerability in Vanillaforums Vanilla Vanilla before 2.6.1 allows XSS via the email field of a profile. network low complexity vanillaforums CWE-79	6.1
2018-09-28	CVE-2018-17056	Cross-site Scripting vulnerability in Progress Sitefinity CMS 10.2/11.0 Cross-site scripting (XSS) vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 through 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network low complexity progress CWE-79	6.1
2018-09-28	CVE-2018-16277	Cross-site Scripting vulnerability in Xwiki The Image Import function in XWiki through 10.7 has XSS. network low complexity xwiki CWE-79	5.4
2018-09-28	CVE-2018-14037	Cross-site Scripting vulnerability in Progress Kendo UI 2018.1.221 Cross-site scripting (XSS) vulnerability in Progress Kendo UI Editor v2018.1.221 allows remote attackers to inject arbitrary JavaScript into the DOM of the WYSIWYG editor because of the editorNS.Serializer toEditableHtml function in kendo.all.min.js. network low complexity progress CWE-79	6.1
2018-09-27	CVE-2018-1820	Cross-site Scripting vulnerability in IBM Websphere Portal IBM WebSphere Portal 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2018-09-27	CVE-2018-1716	Cross-site Scripting vulnerability in IBM Websphere Portal IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	6.1
2018-09-27	CVE-2018-1660	Cross-site Scripting vulnerability in IBM Websphere Portal IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4