Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-14 | CVE-2018-0583 | Cross-site Scripting vulnerability in Asus Rt-Ac1200Hp Firmware Cross-site scripting vulnerability in ASUS RT-AC1200HP Firmware version prior to 3.0.0.4.380.4180 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-05-14 | CVE-2018-0582 | Cross-site Scripting vulnerability in Asus Rt-Ac68U Firmware Cross-site scripting vulnerability in ASUS RT-AC68U Firmware version prior to 3.0.0.4.380.1031 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-05-14 | CVE-2018-0581 | Cross-site Scripting vulnerability in Asus Rt-Ac87U Firmware 3.0.0.4.378.3754 Cross-site scripting vulnerability in ASUS RT-AC87U Firmware version prior to 3.0.0.4.378.9383 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-05-14 | CVE-2018-0579 | Cross-site Scripting vulnerability in Webdados Open Graph for Facebook, Google+ and Twitter Card Tags Cross-site scripting vulnerability in Open Graph for Facebook, Google+ and Twitter Card Tags plugin prior to version 2.2.4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2018-05-14 | CVE-2018-0578 | Cross-site Scripting vulnerability in Pixelyoursite Cross-site scripting vulnerability in PixelYourSite plugin prior to version 5.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2018-05-14 | CVE-2018-0577 | Cross-site Scripting vulnerability in Flippercode WP Google MAP Cross-site scripting vulnerability in WP Google Map Plugin prior to version 4.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2018-05-14 | CVE-2018-0576 | Cross-site Scripting vulnerability in Pixelite Events Manager Cross-site scripting vulnerability in Events Manager plugin prior to version 5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2018-05-14 | CVE-2017-16860 | Cross-site Scripting vulnerability in Atlassian Application Links The invalidRedirectUrl template in Atlassian Application Links before version 5.2.7, from version 5.3.0 before version 5.3.4 and from version 5.4.0 before version 5.4.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the redirectUrl parameter link in the redirect warning message. | 6.1 |
| 2018-05-12 | CVE-2018-11012 | Cross-site Scripting vulnerability in Halo 0.0.2 ruibaby Halo 0.0.2 has stored XSS via the loginName and loginPwd parameters in a failed login attempt to AdminController.java. | 6.1 |
| 2018-05-12 | CVE-2018-11011 | Cross-site Scripting vulnerability in Halo 0.0.2 ruibaby Halo 0.0.2 has stored XSS via the commentAuthor field to FrontCommentController.java. | 6.1 |