Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2018-02-12	CVE-2018-6864	Cross-site Scripting vulnerability in Multireligion Responsive Matrimonial Project Multireligion Responsive Matrimonial 4.7.2 Cross Site Scripting (XSS) exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter. network low complexity multireligion-responsive-matrimonial-project CWE-79	5.4
2018-02-12	CVE-2018-6862	Cross-site Scripting vulnerability in Bitcoin MLM Project Bitcoin MLM 1.0.2 Cross Site Scripting (XSS) exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field. network low complexity bitcoin-mlm-project CWE-79	5.4
2018-02-12	CVE-2018-6861	Cross-site Scripting vulnerability in Lawyer Search Script Project Lawyer Search Script 1.0.2 Cross Site Scripting (XSS) exists in PHP Scripts Mall Lawyer Search Script 1.0.2 via a profile update parameter. network low complexity lawyer-search-script-project CWE-79	5.4
2018-02-12	CVE-2018-6858	Cross-site Scripting vulnerability in Facebook Clone Script Project Facebook Clone Script 1.0.5 Cross Site Scripting (XSS) exists in PHP Scripts Mall Facebook Clone Script. network low complexity facebook-clone-script-project CWE-79	5.4
2018-02-12	CVE-2018-6845	Cross-site Scripting vulnerability in OLX Clone Script Project OLX Clone Script 2.0.6 PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 has XSS via the Leave Comment field. network low complexity olx-clone-script-project CWE-79	6.1
2018-02-11	CVE-2018-6891	Cross-site Scripting vulnerability in Booking-Wp-Plugin Bookly Bookly #1 WordPress Booking Plugin Lite before 14.5 has XSS via a jQuery.ajax request to ng-payment_details_dialog.js. network low complexity booking-wp-plugin CWE-79	6.1
2018-02-09	CVE-2018-1000062	Cross-site Scripting vulnerability in Wondercms 2.4.0 WonderCMS version 2.4.0 contains a Stored Cross-Site Scripting on File Upload through SVG vulnerability in uploadFileAction(), 'svg' => 'image/svg+xml' that can result in An attacker can execute arbitrary script on an unsuspecting user's browser. network high complexity wondercms CWE-79	4.4
2018-02-09	CVE-2018-1000029	Cross-site Scripting vulnerability in Elsa Project Elsa 2Cc17F1 mcholste Enterprise Log Search and Archive (ELSA) version revision 1205, commit 2cc17f1 and earlier contains a Cross Site Scripting (XSS) vulnerability in index view (/) that can result in . network low complexity elsa-project CWE-79	6.1
2018-02-09	CVE-2018-1000020	Cross-site Scripting vulnerability in Open-Emr Openemr 5.0.0 OpenEMR version 5.0.0 contains a Cross Site Scripting (XSS) vulnerability in open-flash-chart.swf and _posteddata.php that can result in . network low complexity open-emr CWE-79	6.1
2018-02-09	CVE-2017-1000510	Cross-site Scripting vulnerability in Croogo 2.3.117G6F82E6C Croogo version 2.3.1-17-g6f82e6c contains a Cross Site Scripting (XSS) vulnerability in Page name that can result in execution of javascript code. network low complexity croogo CWE-79	5.4