Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-21 | CVE-2017-1462 | Cross-site Scripting vulnerability in IBM Rational Rhapsody Design Manager IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2018-02-21 | CVE-2018-7303 | Cross-site Scripting vulnerability in Tiki Tikiwiki Cms/Groupware 17.1 The Calendar component in Tiki 17.1 allows HTML injection. | 5.4 |
| 2018-02-21 | CVE-2018-7302 | Cross-site Scripting vulnerability in Tiki 17.1 Tiki 17.1 allows upload of a .PNG file that actually has SVG content, leading to XSS. | 5.4 |
| 2018-02-21 | CVE-2018-7280 | Cross-site Scripting vulnerability in Ninjaforms Ninja Forms The Ninja Forms plugin before 3.2.14 for WordPress has XSS. | 6.1 |
| 2018-02-21 | CVE-2018-7261 | Cross-site Scripting vulnerability in Radiantcms Radiant CMS 1.1.4 There are multiple Persistent XSS vulnerabilities in Radiant CMS 1.1.4. | 5.4 |
| 2018-02-21 | CVE-2016-0344 | Cross-site Scripting vulnerability in IBM Tririga Application Platform Cross-site scripting (XSS) vulnerability in the My Reports component in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2018-02-21 | CVE-2013-4891 | Cross-site Scripting vulnerability in Codeigniter The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag. | 6.1 |
| 2018-02-21 | CVE-2018-7260 | Cross-site Scripting vulnerability in PHPmyadmin Cross-site scripting (XSS) vulnerability in db_central_columns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | 5.4 |
| 2018-02-21 | CVE-2018-7278 | Cross-site Scripting vulnerability in Rletech Fds-Pc-Dp Firmware and Fds-Pc Firmware An issue was discovered on RLE Protocol Converter FDS-PC / FDS-PC-DP 2.1 devices. | 6.1 |
| 2018-02-21 | CVE-2018-7277 | Cross-site Scripting vulnerability in Rletech Fds-Wi Firmware and Wi-Mgr Firmware An issue was discovered on RLE Wi-MGR/FDS-Wi 6.2 devices. | 6.1 |