Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-30 | CVE-2018-6355 | Cross-site Scripting vulnerability in Iball Ib-Wrb302N Firmware 1.0.1Sep82017 /goform/setLang on iBall 300M devices with "iB-WRB302N_1.0.1-Sep 8 2017" firmware has Unauthenticated Stored Cross Site Scripting via the lang parameter. | 6.1 |
| 2018-01-29 | CVE-2017-14190 | Cross-site Scripting vulnerability in Fortinet Fortios A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests. | 6.1 |
| 2018-01-27 | CVE-2018-6357 | Cross-site Scripting vulnerability in Acurax Social Media Widget The acx_asmw_saveorder_callback function in function.php in the acurax-social-media-widget plugin before 3.2.6 for WordPress has CSRF via the recordsArray parameter to wp-admin/admin-ajax.php, with resultant social_widget_icon_array_order XSS. | 8.8 |
| 2018-01-27 | CVE-2018-6354 | Cross-site Scripting vulnerability in Formspree templates/forms/thanks.html in Formspree before 2018-01-23 allows XSS related to the _next parameter. | 6.1 |
| 2018-01-26 | CVE-2017-1653 | Cross-site Scripting vulnerability in IBM products IBM Jazz Foundation (IBM Rational Collaborative Lifecycle Management 6.0.x) is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1567 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1563 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1540 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM Doors Web Access 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1532 | Cross-site Scripting vulnerability in IBM Engineering Requirements Management Doors IBM DOORS 9.5 and 9.6 is vulnerable to cross-site scripting. | 5.4 |
| 2018-01-26 | CVE-2017-1506 | Cross-site Scripting vulnerability in IBM Cognos TM1 10.2/10.2.2 IBM Cognos TM1 10.2 and 10.2.2 is vulnerable to cross-site scripting. | 6.1 |