Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2019-08-22	CVE-2019-15331	Cross-site Scripting vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System The wp-support-plus-responsive-ticket-system plugin before 9.1.2 for WordPress has HTML injection. network wpsupportplus CWE-79	4.3
2019-08-22	CVE-2019-12386	Cross-site Scripting vulnerability in Ampache An issue was discovered in Ampache through 3.9.1. network ampache CWE-79	3.5
2019-08-22	CVE-2014-10392	Cross-site Scripting vulnerability in Cformsii Project Cformsii The cforms2 plugin before 10.2 for WordPress has XSS. network cformsii-project CWE-79	4.3
2019-08-22	CVE-2019-14469	Cross-site Scripting vulnerability in Sonatype Nexus Repository Manager In Nexus Repository Manager before 3.18.0, users with elevated privileges can create stored XSS. network sonatype CWE-79	3.5
2019-08-22	CVE-2018-20983	Cross-site Scripting vulnerability in Meowapps WP Retina 2X The wp-retina-2x plugin before 5.2.3 for WordPress has XSS. network meowapps CWE-79	4.3
2019-08-22	CVE-2017-18582	Cross-site Scripting vulnerability in Time Sheets Project Time Sheets The time-sheets plugin before 1.5.2 for WordPress has multiple XSS issues. network time-sheets-project CWE-79	4.3
2019-08-22	CVE-2017-18581	Cross-site Scripting vulnerability in Time Sheets Project Time Sheets The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list. network time-sheets-project CWE-79	4.3
2019-08-22	CVE-2017-18577	Cross-site Scripting vulnerability in Ibericode Mailchimp The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. network ibericode CWE-79	4.3
2019-08-22	CVE-2017-18576	Cross-site Scripting vulnerability in Event Notifier Project Event Notifier 1.0.0/1.0.1/1.2.0 The event-notifier plugin before 1.2.1 for WordPress has XSS via the loading animation. network event-notifier-project CWE-79	4.3
2019-08-22	CVE-2016-10925	Cross-site Scripting vulnerability in Profilepress Loginwp The peters-login-redirect plugin before 2.9.1 for WordPress has XSS during the editing of redirect URLs. network profilepress CWE-79	4.3