Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-22 | CVE-2018-6890 | Cross-site Scripting vulnerability in Wolfcms Wolf CMS 0.8.3.1 Cross-site scripting (XSS) vulnerability in Wolf CMS 0.8.3.1 via the page editing feature, as demonstrated by /?/admin/page/edit/3. | 4.8 |
| 2018-02-22 | CVE-2018-1415 | Cross-site Scripting vulnerability in IBM Maximo Asset Management IBM Maximo Asset Management 7.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-02-22 | CVE-2018-0206 | Cross-site Scripting vulnerability in Cisco Unified Communications Manager 11.5(1.13900.52) A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. | 6.1 |
| 2018-02-22 | CVE-2018-0205 | Cross-site Scripting vulnerability in Cisco Prime Collaboration Provisioning 12.1 A vulnerability in the User Provisioning tab in the Cisco Prime Collaboration Provisioning Tool could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. | 6.1 |
| 2018-02-22 | CVE-2018-0201 | Cross-site Scripting vulnerability in Cisco Jabber 11.9/11.9(.0) A vulnerability in Cisco Jabber Client Framework (JCF) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected device. | 5.4 |
| 2018-02-22 | CVE-2018-0200 | Cross-site Scripting vulnerability in Cisco Prime Service Catalog A vulnerability in the web-based interface of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based interface of an affected product. | 6.1 |
| 2018-02-22 | CVE-2018-0199 | Cross-site Scripting vulnerability in Cisco Jabber 11.9/11.9(0) A vulnerability in Cisco Jabber Client Framework (JCF) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of an affected device. | 6.1 |
| 2018-02-22 | CVE-2018-0145 | Cross-site Scripting vulnerability in Cisco Data Center Analytics Framework 3.1 A vulnerability in the web-based management interface of the Cisco Data Center Analytics Framework application could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface of an affected system. | 6.1 |
| 2018-02-21 | CVE-2018-6936 | Cross-site Scripting vulnerability in D-Link Dir-600M C1 Firmware 3.01 Cross Site Scripting (XSS) exists on the D-Link DIR-600M C1 3.01 via the SSID or the name of a user account. | 5.4 |
| 2018-02-21 | CVE-2017-1604 | Cross-site Scripting vulnerability in IBM Maximo Anywhere IBM Maximo Anywhere 7.5 and 7.6 is vulnerable to cross-site scripting. | 5.4 |