Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-17 | CVE-2017-1000033 | Cross-site Scripting vulnerability in Vospari Forms Project Vospari Forms Wordpress Plugin Vospari Forms version < 1.4 is vulnerable to a reflected cross site scripting in the form submission resulting in javascript code execution in the context on the current user. | 6.1 |
| 2017-07-17 | CVE-2017-1000032 | Cross-site Scripting vulnerability in Cacti 0.8.8B Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to data_sources.php. | 6.1 |
| 2017-07-17 | CVE-2017-1000023 | Cross-site Scripting vulnerability in Logicaldoc LogicalDoc Community Edition 7.5.3 and prior is vulnerable to an XSS when using preview on HTML document. | 5.4 |
| 2017-07-17 | CVE-2017-1000015 | Cross-site Scripting vulnerability in PHPmyadmin phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack through crafted cookie parameters | 6.1 |
| 2017-07-17 | CVE-2017-1000012 | Cross-site Scripting vulnerability in Mysqldumper 1.24 MySQL Dumper version 1.24 is vulnerable to stored XSS when displaying the data in the database to the user | 6.1 |
| 2017-07-17 | CVE-2017-1000011 | Cross-site Scripting vulnerability in Mywebsql 3.6 MyWebSQL version 3.6 is vulnerable to stored XSS in the database manager component resulting in account takeover or stealing of information | 6.1 |
| 2017-07-17 | CVE-2017-1000006 | Cross-site Scripting vulnerability in Plotly Plotly.Js Plotly, Inc. | 6.1 |
| 2017-07-17 | CVE-2017-1000005 | Cross-site Scripting vulnerability in PHPminiadmin Project PHPminiadmin 1.9.160930 PHPMiniAdmin version 1.9.160630 is vulnerable to stored XSS in the name of databases, tables and columns resulting in potential account takeover and scraping of data (stealing data). | 6.1 |
| 2017-07-13 | CVE-2016-8952 | Cross-site Scripting vulnerability in IBM Emptoris Strategic Supply Management IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-13 | CVE-2016-6019 | Cross-site Scripting vulnerability in IBM Emptoris Strategic Supply Management IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to cross-site scripting. | 5.4 |