Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2017-07-05 CVE-2016-9746 Cross-site Scripting vulnerability in IBM products
IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-05 CVE-2016-9733 Cross-site Scripting vulnerability in IBM products
IBM Team Concert (RTC) 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-05 CVE-2016-9701 Cross-site Scripting vulnerability in IBM products
IBM Team Concert 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-05 CVE-2017-1256 Cross-site Scripting vulnerability in IBM Security Guardium 10.0/10.1
IBM Security Guardium 10.0, 10.1 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2017-07-05 CVE-2017-1217 Cross-site Scripting vulnerability in IBM Websphere Portal 8.5/9.0
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
6.1
6.1
2017-07-04 CVE-2017-7276 Cross-site Scripting vulnerability in Topdesk
There is reflected XSS in TOPdesk before 5.7.6 and 6.x and 7.x before 7.03.019.
network
low complexity
topdesk CWE-79
6.1
6.1
2017-07-04 CVE-2017-9313 Cross-site Scripting vulnerability in Webmin
Multiple Cross-site scripting (XSS) vulnerabilities in Webmin before 1.850 allow remote attackers to inject arbitrary web script or HTML via the sec parameter to view_man.cgi, the referers parameter to change_referers.cgi, or the name parameter to save_user.cgi.
network
low complexity
webmin CWE-79
6.1
6.1
2017-07-04 CVE-2017-7316 Cross-site Scripting vulnerability in Humaxdigital Hg100R Firmware 2.0.6
An issue was discovered on Humax Digital HG100R 2.0.6 devices.
network
low complexity
humaxdigital CWE-79
6.1
6.1
2017-07-04 CVE-2017-6725 Cross-site Scripting vulnerability in Cisco Prime Infrastructure 2.2(2)
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system.
network
low complexity
cisco CWE-79
6.1
6.1
2017-07-04 CVE-2017-6724 Cross-site Scripting vulnerability in Cisco Prime Infrastructure 3.1(0.0)
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system.
network
low complexity
cisco CWE-79
6.1
6.1