Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-04 | CVE-2018-9307 | Cross-site Scripting vulnerability in Dsmall Project Dsmall 20180320 dsmall v20180320 allows XSS via the pdr_sn parameter to public/index.php/home/predeposit/index.html. | 6.1 |
| 2018-04-04 | CVE-2018-9034 | Cross-site Scripting vulnerability in Relevanssi Cross-site scripting (XSS) vulnerability in lib/interface.php of the Relevanssi plugin 4.0.4 for WordPress allows remote attackers to inject arbitrary JavaScript or HTML via the tab GET parameter. | 5.4 |
| 2018-04-04 | CVE-2017-1772 | Cross-site Scripting vulnerability in IBM Mobilefirst Platform Foundation IBM Worklight (IBM MobileFirst Platform Foundation 6.3, 7.0, 7.1, and 8.0) is vulnerable to cross-site scripting. | 6.1 |
| 2018-04-04 | CVE-2017-3964 | Cross-site Scripting vulnerability in Mcafee Network Security Manager Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to inject arbitrary web script or HTML via a URL parameter. | 5.4 |
| 2018-04-04 | CVE-2018-9238 | Cross-site Scripting vulnerability in Yahei PHP Prober 0.4.7 proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter. | 6.1 |
| 2018-04-04 | CVE-2018-9237 | Cross-site Scripting vulnerability in Iscripts Easycreate 3.2.1 iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field. | 5.4 |
| 2018-04-04 | CVE-2018-9236 | Cross-site Scripting vulnerability in Iscripts Easycreate 3.2.1 iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field. | 5.4 |
| 2018-04-04 | CVE-2018-9235 | Cross-site Scripting vulnerability in Iscripts Sonicbb 1.0 iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php. | 6.1 |
| 2018-04-03 | CVE-2018-4133 | Cross-site Scripting vulnerability in multiple products An issue was discovered in certain Apple products. | 6.1 |
| 2018-04-03 | CVE-2017-2492 | Cross-site Scripting vulnerability in Apple Safari An issue was discovered in certain Apple products. | 6.1 |