Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2018-06-29 CVE-2018-12992 Cross-site Scripting vulnerability in Maelostore Project Maelostore 1.5.0
An issue was discovered CMS MaeloStore V.1.5.0. 		3.5
3.5
2018-06-29 CVE-2018-12973 Cross-site Scripting vulnerability in Opentsdb 2.3.0
An issue was discovered in OpenTSDB 2.3.0.
network
opentsdb CWE-79
4.3
4.3
2018-06-28 CVE-2018-1351 Cross-site Scripting vulnerability in Fortinet Fortimanager
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.6 and below versions allows attacker to execute HTML/javascript code via managed remote devices CLI commands by viewing the remote device CLI config installation log.
network
fortinet CWE-79
3.5
3.5
2018-06-27 CVE-2018-1507 Cross-site Scripting vulnerability in IBM Rational Doors Next Generation 6.0.5
IBM DOORS Next Generation (DNG/RRC) 6.0.5 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2018-06-27 CVE-2018-12919 Cross-site Scripting vulnerability in Craftedweb Project Craftedweb 20130924
In CraftedWeb through 2013-09-24, aasp_includes/pages/notice.php allows XSS via the e parameter. 		4.3
4.3
2018-06-27 CVE-2018-12905 Cross-site Scripting vulnerability in Joyplus-Cms Project Joyplus-Cms 1.6.0
joyplus-cms 1.6.0 has XSS in admin_player.php, related to manager/index.php "system manage" and "add" actions. 		4.3
4.3
2018-06-26 CVE-2018-12903 Cross-site Scripting vulnerability in Cyberark Endpoint Privilege Manager 10.2.1.603
In CyberArk Endpoint Privilege Manager (formerly Viewfinity) 10.2.1.603, there is persistent XSS via an account name on the create token screen, the VfManager.asmx SelectAccounts->DisplayName screen, a user's groups in ConfigurationPage, the Dialog Title field, and App Group Name in the Application Group Wizard.
network
cyberark CWE-79
3.5
3.5
2018-06-26 CVE-2018-12902 Cross-site Scripting vulnerability in Easymagazine Project Easymagazine 20121026
In Easy Magazine through 2012-10-26, there is XSS in the search bar of the web site. 		4.3
4.3
2018-06-26 CVE-2018-12711 Cross-site Scripting vulnerability in Joomla Joomla!
An XSS issue was discovered in the language switcher module in Joomla! 1.6.0 through 3.8.8 before 3.8.9.
network
joomla CWE-79
4.3
4.3
2018-06-26 CVE-2018-11448 Cross-site Scripting vulnerability in Siemens Scalance M875 Firmware
A vulnerability has been identified in SCALANCE M875 (All versions).
network
siemens CWE-79
3.5
3.5