Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-03 | CVE-2018-10164 | Cross-site Scripting vulnerability in Tp-Link EAP Controller 2.5.4/2.6.0 Stored Cross-site scripting (XSS) vulnerability in the TP-Link EAP Controller and Omada Controller versions 2.5.4_Windows/2.6.0_Windows allows authenticated attackers to inject arbitrary web script or HTML via the implementation of portalPictureUpload functionality. | 5.4 |
| 2018-05-02 | CVE-2018-8900 | Cross-site Scripting vulnerability in Gemalto Sentinel LDK RTE The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote attackers to inject malicious web script in the logs page of Admin Control Center (ACC) for cross-site scripting (XSS) vulnerability. | 6.1 |
| 2018-05-02 | CVE-2018-10568 | Cross-site Scripting vulnerability in Flexense Disksorter 9.5.12 XSS exists in Flexense DiskSorter Enterprise from v9.5.12 to v10.7. | 6.1 |
| 2018-05-02 | CVE-2018-10567 | Cross-site Scripting vulnerability in Flexense VX Search 10.1.12/10.1.2/10.7 XSS exists in Flexense VX Search Enterprise from v10.1.12 to v10.7. | 6.1 |
| 2018-05-02 | CVE-2018-10566 | Cross-site Scripting vulnerability in Flexense Dupscout 10.0.18/10.7 XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7. | 6.1 |
| 2018-05-02 | CVE-2018-10565 | Cross-site Scripting vulnerability in Flexense Disksavvy 10.4/10.4.18/10.7 XSS exists in Flexense DiskSavvy Enterprise from v10.4 to v10.7. | 6.1 |
| 2018-05-02 | CVE-2018-10564 | Cross-site Scripting vulnerability in Flexense Diskpulse 10.7 XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7. | 6.1 |
| 2018-05-02 | CVE-2018-10563 | Cross-site Scripting vulnerability in Flexense Syncbreeze An XSS in Flexense SyncBreeze affects all versions (tested from SyncBreeze Enterprise from v10.1 to v10.7). | 6.1 |
| 2018-05-02 | CVE-2018-10294 | Cross-site Scripting vulnerability in Flexense Diskboss Flexense DiskBoss Enterprise v7.4.28 to v9.1.16 has XSS. | 6.1 |
| 2018-05-02 | CVE-2018-10680 | Cross-site Scripting vulnerability in Zblogcn Z-Blogphp 1.5.2 Z-BlogPHP 1.5.2 has a stored Cross Site Scripting Vulnerability exploitable by an administrator who navigates to "Web site settings --> Basic setting --> Website title" and enters an XSS payload via the zb_system/cmd.php ZC_BLOG_NAME parameter. | 6.1 |