Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-31 | CVE-2017-1496 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 5.2.x is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-31 | CVE-2017-1332 | Cross-site Scripting vulnerability in IBM Inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2017-07-31 | CVE-2017-1303 | Cross-site Scripting vulnerability in IBM Websphere Portal IBM WebSphere Portal and Web Content Manager 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2017-07-31 | CVE-2016-9718 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.1. | 5.4 |
| 2017-07-31 | CVE-2016-9715 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-30 | CVE-2017-11744 | Cross-site Scripting vulnerability in Modx Revolution 2.5.7 In MODX Revolution 2.5.7, the "key" and "name" parameters in the System Settings module are vulnerable to XSS. | 6.1 |
| 2017-07-29 | CVE-2017-11737 | Cross-site Scripting vulnerability in Rspamd Project Rspamd interface/js/app/history.js in WebUI in Rspamd before 1.6.3 allows XSS via the Subject and Message-Id headers, which are mishandled in the history page. | 6.1 |
| 2017-07-28 | CVE-2017-11716 | Cross-site Scripting vulnerability in Metinfo Project Metinfo MetInfo through 5.3.17 allows stored XSS via HTML Edit Mode. | 6.1 |
| 2017-07-28 | CVE-2017-11647 | Cross-site Scripting vulnerability in Netcomm 4Gt101W Bootloader and 4Gt101W Software NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to stored cross-site scripting attacks. | 5.4 |
| 2017-07-27 | CVE-2017-11691 | Cross-site Scripting vulnerability in Cacti 1.1.13 Cross-site scripting (XSS) vulnerability in auth_profile.php in Cacti 1.1.13 allows remote attackers to inject arbitrary web script or HTML via specially crafted HTTP Referer headers. | 5.4 |