Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-22 | CVE-2017-7222 | Cross-site Scripting vulnerability in Mantisbt A cross-site scripting (XSS) vulnerability in MantisBT before 2.1.1 allows remote attackers to inject arbitrary HTML or JavaScript (if MantisBT's CSP settings permit it) by modifying 'window_title' in the application configuration. | 6.1 |
| 2017-03-21 | CVE-2017-7215 | Cross-site Scripting vulnerability in Misp Project Misp Cross site scripting in some view elements in the index filter tool in app/webroot/js/misp2.4.68.js and the organisation landing page in app/View/Organisations/ajax/landingpage.ctp of MISP before 2.4.69 allows remote attackers to inject arbitrary web script or HTML. | 6.1 |
| 2017-03-21 | CVE-2017-7205 | Cross-site Scripting vulnerability in Gamepanelx Gamepanelx-V3 3.0.12 A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. | 6.1 |
| 2017-03-21 | CVE-2017-7204 | Cross-site Scripting vulnerability in Imdbphp Project Imdbphp 5.1.1 A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. | 6.1 |
| 2017-03-21 | CVE-2017-7203 | Cross-site Scripting vulnerability in Zoneminder 1.30.2 A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. | 6.1 |
| 2017-03-21 | CVE-2017-7202 | Cross-site Scripting vulnerability in Slims Slims7 Cendana 62B8Ee8B51Be89Fc65E0D59B01C3724737F9Da20 Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. | 6.1 |
| 2017-03-20 | CVE-2016-4930 | Cross-site Scripting vulnerability in Juniper Junos Space Cross-site scripting (XSS) vulnerability in Junos Space before 15.2R2 allows remote attackers to steal sensitive information or perform certain administrative actions. | 6.1 |
| 2017-03-20 | CVE-2017-1146 | Cross-site Scripting vulnerability in IBM Content Navigator 2.0.3/3.0.0 IBM Content Navigator 2.0.3 and 3.0.0 are vulnerable to cross-site scripting. | 5.4 |
| 2017-03-20 | CVE-2016-9696 | Cross-site Scripting vulnerability in IBM Rational Rhapsody Design Manager IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to HTML injection. | 5.4 |
| 2017-03-20 | CVE-2016-9694 | Cross-site Scripting vulnerability in IBM Rational Rhapsody Design Manager IBM Rhapsody DM 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. | 5.4 |