Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-29 | CVE-2018-13003 | Cross-site Scripting vulnerability in Opentsdb 2.3.0 An issue was discovered in OpenTSDB 2.3.0. | 6.1 |
| 2018-06-29 | CVE-2018-13002 | Cross-site Scripting vulnerability in Weblication CMS Core & Grid 12.6.24 An XSS issue was discovered in Inhaltsprojekte in Weblication CMS Core & Grid v12.6.24. | 4.8 |
| 2018-06-29 | CVE-2018-13001 | Cross-site Scripting vulnerability in Sandoba Cp::Shop 2016.1 An XSS issue was discovered in Sandoba CP:Shop v2016.1. | 6.1 |
| 2018-06-29 | CVE-2018-13000 | Cross-site Scripting vulnerability in Anelectron Advanced Electron Forum 1.0.9 An XSS issue was discovered in Advanced Electron Forum (AEF) v1.0.9. | 4.8 |
| 2018-06-29 | CVE-2018-12998 | Cross-site Scripting vulnerability in Zohocorp products A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Netflow Analyzer before build 123137, Network Configuration Manager before build 123128, OpManager before build 123148, OpUtils before build 123161, and Firewall Analyzer before build 123147 allows remote attackers to inject arbitrary web script or HTML via the parameter 'operation' to /servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet. | 6.1 |
| 2018-06-29 | CVE-2018-12996 | Cross-site Scripting vulnerability in Zohocorp Manageengine Applications Manager A reflected Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Applications Manager before 13 (Build 13800) allows remote attackers to inject arbitrary web script or HTML via the parameter 'method' to GraphicalView.do. | 6.1 |
| 2018-06-29 | CVE-2018-12992 | Cross-site Scripting vulnerability in Maelostore Project Maelostore 1.5.0 An issue was discovered CMS MaeloStore V.1.5.0. | 4.8 |
| 2018-06-29 | CVE-2018-12973 | Cross-site Scripting vulnerability in Opentsdb 2.3.0 An issue was discovered in OpenTSDB 2.3.0. | 6.1 |
| 2018-06-28 | CVE-2018-1351 | Cross-site Scripting vulnerability in Fortinet Fortimanager A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.6 and below versions allows attacker to execute HTML/javascript code via managed remote devices CLI commands by viewing the remote device CLI config installation log. | 4.8 |
| 2018-06-27 | CVE-2018-1507 | Cross-site Scripting vulnerability in IBM Rational Doors Next Generation 6.0.5 IBM DOORS Next Generation (DNG/RRC) 6.0.5 is vulnerable to cross-site scripting. | 5.4 |