Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-06 | CVE-2018-16459 | Cross-site Scripting vulnerability in Exceljs Project Exceljs An unescaped payload in exceljs <v1.6 allows a possible XSS via cell value when worksheet is displayed in browser. | 6.1 |
| 2018-09-05 | CVE-2018-16551 | Cross-site Scripting vulnerability in Lavalite 5.5.0 LavaLite 5.5 has XSS via a /edit URI, as demonstrated by client/job/job/Zy8PWBekrJ/edit. | 5.4 |
| 2018-09-05 | CVE-2018-16381 | Cross-site Scripting vulnerability in E107 2.1.8 e107 2.1.8 has XSS via the e107_admin/users.php?mode=main&action=list user_loginname parameter. | 6.1 |
| 2018-09-05 | CVE-2018-16361 | Cross-site Scripting vulnerability in Btiteam Xbtit 2.5.4 An issue was discovered in BTITeam XBTIT 2.5.4. | 6.1 |
| 2018-09-05 | CVE-2018-16148 | Cross-site Scripting vulnerability in Opsview The diagnosticsb2ksy parameter of the /rest endpoint in Opsview Monitor before 5.3.1 and 5.4.x before 5.4.2 is vulnerable to Cross-Site Scripting. | 6.1 |
| 2018-09-05 | CVE-2018-16147 | Cross-site Scripting vulnerability in Opsview The data parameter of the /settings/api/router endpoint in Opsview Monitor before 5.3.1 and 5.4.x before 5.4.2 is vulnerable to Cross-Site Scripting. | 6.1 |
| 2018-09-05 | CVE-2018-15917 | Cross-site Scripting vulnerability in Jorani Project Jorani 0.6.5 Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language. | 5.4 |
| 2018-09-05 | CVE-2018-15679 | Cross-site Scripting vulnerability in Btiteam Xbtit 2.5.4 An issue was discovered in BTITeam XBTIT 2.5.4. | 6.1 |
| 2018-09-05 | CVE-2018-15678 | Cross-site Scripting vulnerability in Btiteam Xbtit 2.5.4 An issue was discovered in BTITeam XBTIT 2.5.4. | 6.1 |
| 2018-09-05 | CVE-2018-15677 | Cross-site Scripting vulnerability in Btiteam Xbtit 2.5.4 The newsfeed (aka /index.php?page=viewnews) in BTITeam XBTIT 2.5.4 has stored XSS via the title of a news item. | 6.1 |