Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-10 | CVE-2017-16760 | Cross-site Scripting vulnerability in Inedo Buildmaster Inedo BuildMaster before 5.8.2 has XSS. | 6.1 |
| 2017-11-10 | CVE-2017-16568 | Cross-site Scripting vulnerability in Logitech Media Server 7.9.0 Persistent Cross-Site Scripting (XSS) vulnerability in Logitech Media Server 7.9.0, affecting the "Radio" functionality. | 5.4 |
| 2017-11-10 | CVE-2017-16567 | Cross-site Scripting vulnerability in Logitech Media Server 7.9.0 Persistent Cross-Site Scripting (XSS) vulnerability in Logitech Media Server 7.9.0, affecting the "Favorites" feature. | 5.4 |
| 2017-11-09 | CVE-2017-16758 | Cross-site Scripting vulnerability in Ultimate Instagram Feed Project Ultimate Instagram Feed Cross-site scripting (XSS) vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin before 1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "access_token" parameter. | 4.8 |
| 2017-11-08 | CVE-2017-16665 | Cross-site Scripting vulnerability in Remobjects Remoting SDK 9 1.0.0.0. RemObjects Remoting SDK 9 1.0.0.0 for Delphi is vulnerable to a reflected Cross Site Scripting (XSS) attack via the service parameter to the /soap URI, triggering an invalid attempt to generate WSDL. | 6.1 |
| 2017-11-06 | CVE-2017-16636 | Cross-site Scripting vulnerability in Bludit 1.5.2/2.0.1 In Bludit v1.5.2 and v2.0.1, an XSS vulnerability is located in the new page, new category, and edit post function body message context. | 5.4 |
| 2017-11-06 | CVE-2017-16635 | Cross-site Scripting vulnerability in Tinywebgallery 2.4 In TinyWebGallery v2.4, an XSS vulnerability is located in the `mkname`, `mkitem`, and `item` parameters of the `Add/Create` module. | 5.4 |
| 2017-11-06 | CVE-2017-7425 | Cross-site Scripting vulnerability in Netiq Imanager 3.0.3.2 Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2. | 6.1 |
| 2017-11-06 | CVE-2015-7878 | Cross-site Scripting vulnerability in Taxonomy Find Project Taxonomy Find Cross-site scripting (XSS) vulnerability in the Taxonomy Find module 6.x-2.x through 6.x-1.2 and 7.x-2.x through 7.x-1.0 in Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via taxonomy vocabulary and term names. | 5.4 |
| 2017-11-06 | CVE-2017-16564 | Cross-site Scripting vulnerability in Grandstream Ht802 Firmware Stored Cross-site scripting (XSS) vulnerability in /cgi-bin/config2 on Vonage (Grandstream) HT802 devices allows remote authenticated users to inject arbitrary web script or HTML via the DHCP vendor class ID field (P148). | 5.4 |