Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-10 | CVE-2017-1729 | Cross-site Scripting vulnerability in IBM Rational Quality Manager IBM Rational Quality Manager 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-10 | CVE-2018-1521 | Cross-site Scripting vulnerability in IBM Rational Team Concert IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-10 | CVE-2018-1408 | Cross-site Scripting vulnerability in IBM Rational Team Concert IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-10 | CVE-2018-1407 | Cross-site Scripting vulnerability in IBM Rational Team Concert IBM Rational Team Concert 5.0 through 5.0.2 and 6.0 through 6.0.5 are vulnerable to cross-site scripting. | 5.4 |
| 2018-07-10 | CVE-2018-13388 | Cross-site Scripting vulnerability in Atlassian Fisheye The review attachment resource in Atlassian Fisheye and Crucible before version 4.5.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in attached files. | 5.4 |
| 2018-07-09 | CVE-2018-11450 | Cross-site Scripting vulnerability in Siemens Teamcenter Product Lifecycle Management 9.1.2.5 A reflected Cross-Site-Scripting (XSS) vulnerability has been identified in Siemens PLM Software TEAMCENTER (V9.1.2.5). | 6.1 |
| 2018-07-09 | CVE-2018-1000611 | Cross-site Scripting vulnerability in Openconext Engineblock SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross Site Scripting (XSS) vulnerability that can result in Allows an attacker to inject arbitrary web scripts or HTML into help and login pages. | 6.1 |
| 2018-07-09 | CVE-2013-2999 | Cross-site Scripting vulnerability in IBM Infosphere Data Replication Dashboard 10.1/9.7 Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-07-09 | CVE-2018-13256 | Cross-site Scripting vulnerability in Chartered Accountant : Auditor Website Project Chartered Accountant : Auditor Website 2.0.1 PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or firstname parameter. | 6.1 |
| 2018-07-08 | CVE-2018-13433 | Cross-site Scripting vulnerability in Boostnote 0.11.7 Boostnote v0.11.7 allows XSS during highlighting of Markdown text, as demonstrated by an onerror attribute of an IMG element. | 6.1 |