Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-03 | CVE-2017-7400 | Cross-site Scripting vulnerability in Openstack Horizon OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping. | 4.8 |
| 2017-04-02 | CVE-2016-8789 | Cross-site Scripting vulnerability in Huawei Espace Integrated Access Device Firmware Huawei eSpace Integrated Access Device (IAD) with software V300R001C03, V300R001C04, V300R001C06, V300R001C20, and V300R001C07 allows an attacker to trick a user into clicking a URL containing malicious scripts to obtain user information or hijack the session, aka XSS. | 6.1 |
| 2017-04-02 | CVE-2017-2475 | Cross-site Scripting vulnerability in Apple Safari An issue was discovered in certain Apple products. | 6.1 |
| 2017-04-02 | CVE-2017-2445 | Cross-site Scripting vulnerability in Apple Safari An issue was discovered in certain Apple products. | 6.1 |
| 2017-04-02 | CVE-2017-2393 | Cross-site Scripting vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 6.1 |
| 2017-04-01 | CVE-2017-7391 | Cross-site Scripting vulnerability in Magmi Project Magmi 0.7.22 A Cross-Site Scripting (XSS) was discovered in 'Magmi 0.7.22'. | 6.1 |
| 2017-04-01 | CVE-2017-7390 | Cross-site Scripting vulnerability in Socialnetwork Project Socialnetwork 1.2.1 A Cross-Site Scripting (XSS) was discovered in 'SocialNetwork v1.2.1'. | 6.1 |
| 2017-04-01 | CVE-2017-7389 | Cross-site Scripting vulnerability in Openeclass Multiple Cross-Site Scripting (XSS) were discovered in 'openeclass Release_3.5.4'. | 6.1 |
| 2017-04-01 | CVE-2017-7388 | Cross-site Scripting vulnerability in Wallaceit Wallacepos A Cross-Site Scripting (XSS) was discovered in 'wallacepos v1.4.1'. | 6.1 |
| 2017-04-01 | CVE-2017-7387 | Cross-site Scripting vulnerability in Helpmewatchwho Project Helpmewatchwho 20170323 TheFirstQuestion/HelpMeWatchWho before 2017-03-28 is vulnerable to a reflected XSS in HelpMeWatchWho-master/unaired.php (episodeID parameter). | 6.1 |