Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-14	CVE-2018-5690	Cross-site Scripting vulnerability in Dotclear 2.12.1 Cross-site scripting (XSS) vulnerability in admin/users.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the nb parameter (aka the page limit number). network low complexity dotclear CWE-79	5.4
2018-01-14	CVE-2018-5689	Cross-site Scripting vulnerability in Dotclear 2.12.1 Cross-site scripting (XSS) vulnerability in admin/auth.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the malicious user's email. network low complexity dotclear CWE-79	5.4
2018-01-14	CVE-2018-5687	Cross-site Scripting vulnerability in Newsbee Project Newsbee NewsBee allows XSS via the Company Name field in the Settings under admin/admin.php. network low complexity newsbee-project CWE-79	4.8
2018-01-13	CVE-2018-5681	Cross-site Scripting vulnerability in Prestashop 1.7.2.4 PrestaShop 1.7.2.4 has XSS via source-code editing on the "Pages > Edit page" screen. network low complexity prestashop CWE-79	5.4
2018-01-13	CVE-2018-5672	Cross-site Scripting vulnerability in Booking Calendar Project Booking Calendar 2.1.7 An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. network low complexity booking-calendar-project CWE-79	4.8
2018-01-13	CVE-2018-5671	Cross-site Scripting vulnerability in Booking Calendar Project Booking Calendar 2.1.7 An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. network low complexity booking-calendar-project CWE-79	4.8
2018-01-13	CVE-2018-5670	Cross-site Scripting vulnerability in Booking Calendar Project Booking Calendar 2.1.7 An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. network low complexity booking-calendar-project CWE-79	4.8
2018-01-13	CVE-2018-5668	Cross-site Scripting vulnerability in Read and Understood Project Read and Understood 2.1 An issue was discovered in the read-and-understood plugin 2.1 for WordPress. network low complexity read-and-understood-project CWE-79	4.8
2018-01-13	CVE-2018-5667	Cross-site Scripting vulnerability in Read and Understood Project Read and Understood 2.1 An issue was discovered in the read-and-understood plugin 2.1 for WordPress. network low complexity read-and-understood-project CWE-79	4.8
2018-01-13	CVE-2018-5666	Cross-site Scripting vulnerability in Responsive Coming Soon Page Project Responsive Coming Soon Page 1.1.18 An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. network low complexity responsive-coming-soon-page-project CWE-79	4.8