Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-02 | CVE-2017-6396 | Cross-site Scripting vulnerability in Webpagetest Project Webpagetest 3.0 An issue was discovered in WPO-Foundation WebPageTest 3.0. | 6.1 |
| 2017-03-02 | CVE-2017-6395 | Cross-site Scripting vulnerability in Hashover Project Hashover 2.0 An issue was discovered in HashOver 2.0. | 6.1 |
| 2017-03-02 | CVE-2017-6394 | Cross-site Scripting vulnerability in Open-Emr Openemr 5.0.1 Multiple Cross-Site Scripting (XSS) issues were discovered in OpenEMR 5.0.0 and 5.0.1-dev. | 6.1 |
| 2017-03-02 | CVE-2017-6393 | Cross-site Scripting vulnerability in Nagvis 1.9 An issue was discovered in NagVis 1.9b12. | 6.1 |
| 2017-03-02 | CVE-2017-6392 | Cross-site Scripting vulnerability in Kaltura Server An issue was discovered in Kaltura server Lynx-12.11.0. | 6.1 |
| 2017-03-02 | CVE-2017-6391 | Cross-site Scripting vulnerability in Kaltura Server An issue was discovered in Kaltura server Lynx-12.11.0. | 6.1 |
| 2017-03-02 | CVE-2017-6390 | Cross-site Scripting vulnerability in Soruly Whatanime.Ga 34C7155C6Fd82B7746Fe8B56Eb89Bf278553C421 An issue was discovered in whatanime.ga before c334dd8499a681587dd4199e90b0aa0eba814c1d. | 6.1 |
| 2017-03-01 | CVE-2016-8232 | Cross-site Scripting vulnerability in IBM Advanced Management Module Firmware Document Object Model-(DOM) based cross-site scripting vulnerability in the Advanced Management Module (AMM) versions earlier than 66Z of Lenovo IBM BladeCenter HS22, HS22V, HS23, HS23E, HX5 allows an unauthenticated attacker with access to the AMM's IP address to send a crafted URL that could inject a malicious script to access a user's AMM data such as cookies or other session information. | 6.1 |
| 2017-03-01 | CVE-2016-5932 | Cross-site Scripting vulnerability in IBM Connections IBM Connections 4.0, 4.5, 5.0, and 5.5 is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-28 | CVE-2016-9261 | Cross-site Scripting vulnerability in Tenable LOG Correlation Engine 4.8.0 Cross-site scripting (XSS) vulnerability in Tenable Log Correlation Engine (aka LCE) before 4.8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |