Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-11 | CVE-2016-9857 | Cross-site Scripting vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. | 6.1 |
| 2016-12-11 | CVE-2016-9856 | Cross-site Scripting vulnerability in PHPmyadmin An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. | 6.1 |
| 2016-12-11 | CVE-2016-6615 | Cross-site Scripting vulnerability in PHPmyadmin XSS issues were discovered in phpMyAdmin. | 6.1 |
| 2016-12-11 | CVE-2016-6608 | Cross-site Scripting vulnerability in PHPmyadmin XSS issues were discovered in phpMyAdmin. | 6.1 |
| 2016-12-11 | CVE-2016-6607 | Cross-site Scripting vulnerability in PHPmyadmin XSS issues were discovered in phpMyAdmin. | 6.1 |
| 2016-12-09 | CVE-2016-6523 | Cross-site Scripting vulnerability in Dotclear Multiple cross-site scripting (XSS) vulnerabilities in the media manager in Dotclear before 2.10 allow remote attackers to inject arbitrary web script or HTML via the (1) q or (2) link_type parameter to admin/media.php. | 6.1 |
| 2016-12-05 | CVE-2016-9152 | Cross-site Scripting vulnerability in Spip 3.1.3 Cross-site scripting (XSS) vulnerability in ecrire/exec/plonger.php in SPIP 3.1.3 allows remote attackers to inject arbitrary web script or HTML via the rac parameter. | 6.1 |
| 2016-12-01 | CVE-2016-9751 | Cross-site Scripting vulnerability in Piwigo 2.8.3 Cross-site scripting (XSS) vulnerability in the search results front end in Piwigo 2.8.3 allows remote attackers to inject arbitrary web script or HTML via the search parameter. | 6.1 |
| 2016-12-01 | CVE-2016-2994 | Cross-site Scripting vulnerability in IBM Urbancode Deploy Cross-site scripting (XSS) vulnerability in IBM UrbanCode Deploy 6.2.x before 6.2.1.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2016-12-01 | CVE-2016-2991 | Cross-site Scripting vulnerability in IBM Lotus Protector for Mail Security 2.8/2.8.1 Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Protector for Mail Security 2.8.0.0 through 2.8.1.0 before 2.8.1.0-22115 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |