Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-27 | CVE-2017-1234 | Cross-site Scripting vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar 7.2 and 7.3 is vulnerable to cross-site scripting. | 5.4 |
| 2017-06-26 | CVE-2017-9145 | Cross-site Scripting vulnerability in Tiki Tikiwiki Cms/Groupware TikiFilter.php in Tiki Wiki CMS Groupware 12.x through 16.x does not properly validate the imgsize or lang parameter to prevent XSS. | 6.1 |
| 2017-06-26 | CVE-2017-7416 | Cross-site Scripting vulnerability in Ntop Ntopng ntopng before 3.0 allows XSS because GET and POST parameters are improperly validated. | 6.1 |
| 2017-06-24 | CVE-2017-9836 | Cross-site Scripting vulnerability in Piwigo 2.9.1 Cross-site scripting (XSS) vulnerability in Piwigo 2.9.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the virtual_name parameter to /admin.php (i.e., creating a virtual album). | 4.8 |
| 2017-06-23 | CVE-2017-1348 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 is vulnerable to cross-site scripting. | 5.4 |
| 2017-06-23 | CVE-2017-1132 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator 5.2 IBM Sterling B2B Integrator Standard Edition 5.2 is vulnerable to cross-site scripting. | 5.4 |
| 2017-06-23 | CVE-2017-3948 | Cross-site Scripting vulnerability in Mcafee Data Loss Prevention Endpoint Cross Site Scripting (XSS) in IMG Tags in the ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x allows authenticated users to inject arbitrary web script or HTML via injecting malicious JavaScript into a user's browsing session. | 5.4 |
| 2017-06-23 | CVE-2017-9356 | Cross-site Scripting vulnerability in Sitecore Sitecore.Net 7.1/7.2 Sitecore.NET 7.1 through 7.2 has a Cross Site Scripting Vulnerability via the searchStr parameter to the /Search-Results URI. | 6.1 |
| 2017-06-22 | CVE-2016-9747 | Cross-site Scripting vulnerability in IBM products IBM RELM 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. | 5.4 |
| 2017-06-21 | CVE-2017-6053 | Cross-site Scripting vulnerability in Trihedral Vtscada A Cross-Site Scripting issue was discovered in Trihedral VTScada Versions prior to 11.2.26. | 6.1 |