Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-08-08 | CVE-2018-15199 | Cross-site Scripting vulnerability in Auracms 2.3 AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action. | 5.4 |
| 2018-08-08 | CVE-2018-15169 | Cross-site Scripting vulnerability in Zohocorp Manageengine Applications Manager A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager 13 before build 13820 allows remote attackers to inject arbitrary web script or HTML via the /deleteMO.do method parameter. | 6.1 |
| 2018-08-07 | CVE-2018-15130 | Cross-site Scripting vulnerability in Thinksaas 2.6 ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter. | 5.4 |
| 2018-08-07 | CVE-2018-1690 | Cross-site Scripting vulnerability in IBM Rhapsody Model Manager 6.0.6 IBM Rhapsody Model Manager 6.0.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-08-07 | CVE-2018-15129 | Cross-site Scripting vulnerability in Thinksaas 2.6 ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter. | 5.4 |
| 2018-08-06 | CVE-2018-14869 | Cross-site Scripting vulnerability in PHP Template Store Script Project PHP Template Store Script 3.0.6 PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile. | 5.4 |
| 2018-08-06 | CVE-2018-7090 | Cross-site Scripting vulnerability in HP XP 9000 Command View HPE XP P9000 Command View Advanced Edition Software (CVAE) has local and remote cross site scripting vulnerability in versions 7.0.0-00 to earlier than 8.60-00 of DevMgr, TSMgr and RepMgr. | 6.1 |
| 2018-08-06 | CVE-2018-7075 | Cross-site Scripting vulnerability in HP Intelligent Management Center 7.3 A remote cross-site scripting (XSS) vulnerability was identified in HPE Intelligent Management Center (iMC) PLAT version v7.3 (E0506). | 6.1 |
| 2018-08-06 | CVE-2017-9002 | Cross-site Scripting vulnerability in HP Aruba Clearpass Policy Manager All versions of Aruba ClearPass prior to 6.6.8 contain reflected cross-site scripting vulnerabilities. | 6.1 |
| 2018-08-06 | CVE-2017-8991 | Cross-site Scripting vulnerability in HP Centralview Fraud Risk Management HPE has identified a cross site scripting (XSS) vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. | 5.4 |