Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2018-03-29	CVE-2018-6587	Cross-site Scripting vulnerability in CA API Developer Portal 3.5 CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable. network low complexity ca CWE-79	6.1
2018-03-29	CVE-2018-6586	Cross-site Scripting vulnerability in CA API Developer Portal 3.5 CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing. network low complexity ca CWE-79	6.1
2018-03-29	CVE-2018-9123	Cross-site Scripting vulnerability in Crea8Social 2018.2 In Crea8social 2018.2, there is Stored Cross-Site Scripting via a User Profile. network low complexity crea8social CWE-79	5.4
2018-03-29	CVE-2018-9122	Cross-site Scripting vulnerability in Crea8Social 2018.2 In Crea8social 2018.2, there is Reflected Cross-Site Scripting via the term parameter to the /search URI. network low complexity crea8social CWE-79	5.4
2018-03-29	CVE-2018-9121	Cross-site Scripting vulnerability in Crea8Social 2018.2 In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment. network low complexity crea8social CWE-79	5.4
2018-03-29	CVE-2018-9120	Cross-site Scripting vulnerability in Crea8Social 2018.2 In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post. network low complexity crea8social CWE-79	5.4
2018-03-28	CVE-2018-0190	Cross-site Scripting vulnerability in Cisco IOS XE Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. network low complexity cisco CWE-79	6.1
2018-03-28	CVE-2018-0188	Cross-site Scripting vulnerability in Cisco IOS XE Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. network low complexity cisco CWE-79	6.1
2018-03-28	CVE-2018-0186	Cross-site Scripting vulnerability in Cisco IOS XE Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. network low complexity cisco CWE-79	6.1
2018-03-28	CVE-2018-1142	Cross-site Scripting vulnerability in Tenable Appliance Tenable Appliance versions 4.6.1 and earlier have been found to contain a single XSS vulnerability. network low complexity tenable CWE-79	5.4