Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-05 | CVE-2017-8838 | Cross-site Scripting vulnerability in Peplink products XSS via syncid exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. | 6.1 |
| 2017-06-05 | CVE-2017-8440 | Cross-site Scripting vulnerability in Elastic Kibana Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. | 6.1 |
| 2017-06-05 | CVE-2017-8439 | Cross-site Scripting vulnerability in Elastic Kibana 5.4.0 Kibana version 5.4.0 was affected by a Cross Site Scripting (XSS) bug in the Time Series Visual Builder. | 6.1 |
| 2017-06-04 | CVE-2012-6705 | Cross-site Scripting vulnerability in Jamroom 4.2.6 Cross Site Scripting (XSS) exists in Jamroom before 4.2.7 via the Status Update field. | 6.1 |
| 2017-06-02 | CVE-2017-9366 | Cross-site Scripting vulnerability in Epesi Telaxus EPESI 1.8.2 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in modules/Base/Dashboard/Dashboard_0.php, which allows remote attackers to inject arbitrary web script or HTML via a crafted tab_name parameter. | 4.8 |
| 2017-06-02 | CVE-2017-9361 | Cross-site Scripting vulnerability in Websitebaker 2.10.0 WebsiteBaker v2.10.0 has a stored XSS vulnerability in /account/details.php. | 6.1 |
| 2017-06-01 | CVE-2017-7384 | Cross-site Scripting vulnerability in Flipbuilder Flip PDF Cross-site scripting (XSS) vulnerability in FlipBuilder Flip PDF allows remote attackers to inject arbitrary web script or HTML via the currentHTMLURL parameter. | 6.1 |
| 2017-06-01 | CVE-2017-3127 | Cross-site Scripting vulnerability in Fortinet Fortios A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation. | 6.1 |
| 2017-06-01 | CVE-2017-9337 | Cross-site Scripting vulnerability in Markdown on Save Improved Project Markdown on Save Improved 2.5 The Markdown on Save Improved plugin 2.5 for WordPress has a stored XSS vulnerability in the content of a post. | 6.1 |
| 2017-06-01 | CVE-2017-9336 | Cross-site Scripting vulnerability in WP Editor.Md Project WP Editor.Md 1.6 The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post. | 6.1 |