Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-03 | CVE-2015-8815 | Cross-site Scripting vulnerability in Umbraco Multiple cross-site scripting (XSS) vulnerabilities in Umbraco before 7.4.0 allow remote attackers to inject arbitrary web script or HTML via the name parameter to (1) the media page, (2) the developer data edit page, or (3) the form page. | 6.1 |
| 2017-03-03 | CVE-2017-5833 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Cross-site scripting (XSS) vulnerability in the invocation code generation for interstitial zones in Revive Adserver before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. | 6.1 |
| 2017-03-03 | CVE-2017-5832 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Cross-site scripting (XSS) vulnerability in Revive Adserver before 4.0.1 allows remote authenticated users to inject arbitrary web script or HTML via the user's email address. | 5.4 |
| 2017-03-03 | CVE-2017-5616 | Cross-site Scripting vulnerability in Cpanel Cgiecho and Cgiemail Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter. | 6.1 |
| 2017-03-03 | CVE-2016-10203 | Cross-site Scripting vulnerability in Zoneminder Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor. | 6.1 |
| 2017-03-03 | CVE-2016-10202 | Cross-site Scripting vulnerability in Zoneminder Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the path info to index.php. | 6.1 |
| 2017-03-03 | CVE-2016-10201 | Cross-site Scripting vulnerability in Zoneminder Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter in a download log request to index.php. | 6.1 |
| 2017-03-02 | CVE-2017-6103 | Cross-site Scripting vulnerability in Anyvar Project Anyvar 0.1.1 Persistent XSS Vulnerability in Wordpress plugin AnyVar v0.1.1. | 6.1 |
| 2017-03-02 | CVE-2017-6102 | Cross-site Scripting vulnerability in Rockhoist Badges Project Rockhoist Badges Plugin 1.2.2 Persistent XSS in wordpress plugin rockhoist-badges v1.2.2. | 6.1 |
| 2017-03-02 | CVE-2017-6397 | Cross-site Scripting vulnerability in Flightairmap 1.0 An issue was discovered in FlightAirMap v1.0-beta.10. | 6.1 |