Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-22 | CVE-2018-14500 | Cross-site Scripting vulnerability in Joyplus-Cms Project Joyplus-Cms 1.6.0 joyplus-cms 1.6.0 has XSS via the manager/collect/collect_vod_zhuiju.php keyword parameter. | 6.1 |
| 2018-07-20 | CVE-2018-3771 | Cross-site Scripting vulnerability in Statics-Server Project Statics-Server An XSS in statics-server <= 0.0.9 can be used via injected iframe in the filename when statics-server displays directory index in the browser. | 6.1 |
| 2018-07-20 | CVE-2018-1563 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator and Sterling File Gateway IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) is vulnerable to cross-site scripting. | 5.4 |
| 2018-07-20 | CVE-2018-14422 | Cross-site Scripting vulnerability in Sanscms 0.7 blog/index.php in SansCMS 0.7 has XSS via the q parameter. | 6.1 |
| 2018-07-20 | CVE-2018-14419 | Cross-site Scripting vulnerability in Metinfo 6.0.0 MetInfo 6.0.0 allows XSS via a modified name of the navigation bar on the home page. | 4.8 |
| 2018-07-20 | CVE-2018-14415 | Cross-site Scripting vulnerability in Icmsdev Icms An issue was discovered in idreamsoft iCMS before 7.0.10. | 6.1 |
| 2018-07-20 | CVE-2017-18343 | Cross-site Scripting vulnerability in Sensiolabs Symfony The debug handler in Symfony before v2.7.33, 2.8.x before v2.8.26, 3.x before v3.2.13, and 3.3.x before v3.3.6 has XSS via an array key during exception pretty printing in ExceptionHandler.php, as demonstrated by a /_debugbar/open?op=get URI. | 6.1 |
| 2018-07-19 | CVE-2018-1585 | Cross-site Scripting vulnerability in IBM products IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-19 | CVE-2018-1536 | Cross-site Scripting vulnerability in IBM products IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-19 | CVE-2018-1535 | Cross-site Scripting vulnerability in IBM products IBM Rational Rhapsody Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 and IBM Rational Software Architect Design Manager 5.0 through 5.0.2 and 6.0 through 6.0.1 are vulnerable to cross-site scripting. | 5.4 |