Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-16 | CVE-2024-39910 | Cross-site Scripting vulnerability in Decidim decidim is a Free Open-Source participatory democracy, citizen participation and open government for cities and organizations. | 4.8 |
| 2024-09-16 | CVE-2024-8661 | Cross-site Scripting vulnerability in Concretecms Concrete CMS Concrete CMS versions 9.0.0 to 9.3.3 and below 8.5.19 are vulnerable to Stored XSS in the "Next&Previous Nav" block. | 4.8 |
| 2024-09-16 | CVE-2024-46970 | Cross-site Scripting vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible | 6.1 |
| 2024-09-16 | CVE-2024-8776 | Cross-site Scripting vulnerability in Intumit Smartrobot Firmware 6.0.0202012Tw SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing unautheticated remote attackers to inject JavaScript code to the parameter for Reflected Cross-site Scripting attacks. | 6.1 |
| 2024-09-15 | CVE-2024-44053 | Cross-site Scripting vulnerability in Mohammadarif Opor Ayam Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mohammad Arif Opor Ayam allows Reflected XSS.This issue affects Opor Ayam: from n/a through 1.8. | 6.1 |
| 2024-09-15 | CVE-2024-44054 | Cross-site Scripting vulnerability in Cryoutcreations Fluida Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Fluida allows Stored XSS.This issue affects Fluida: from n/a through 1.8.8. | 5.4 |
| 2024-09-15 | CVE-2024-44056 | Cross-site Scripting vulnerability in Cryoutcreations Mantra Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Mantra allows Stored XSS.This issue affects Mantra: from n/a through 3.3.2. | 5.4 |
| 2024-09-15 | CVE-2024-44057 | Cross-site Scripting vulnerability in Cryoutcreations Nirvana Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Nirvana allows Stored XSS.This issue affects Nirvana: from n/a through 1.6.3. | 5.4 |
| 2024-09-15 | CVE-2024-44058 | Cross-site Scripting vulnerability in Cryoutcreations Parabola Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Parabola allows Stored XSS.This issue affects Parabola: from n/a through 2.4.1. | 5.4 |
| 2024-09-15 | CVE-2024-44059 | Cross-site Scripting vulnerability in Mediaron Custom Query Blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MediaRon LLC Custom Query Blocks allows Stored XSS.This issue affects Custom Query Blocks: from n/a through 5.3.1. | 5.4 |