Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-15 | CVE-2017-5938 | Cross-site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in the nav_path function in lib/viewvc.py in ViewVC before 1.0.14 and 1.1.x before 1.1.26 allows remote attackers to inject arbitrary web script or HTML via the nav_data name. | 6.1 |
| 2017-03-15 | CVE-2017-5584 | Cross-site Scripting vulnerability in Paloaltonetworks Pan-Os Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2017-03-15 | CVE-2017-6909 | Cross-site Scripting vulnerability in Shishnet Shimmie An issue was discovered in Shimmie <= 2.5.1. | 6.1 |
| 2017-03-15 | CVE-2017-6908 | Cross-site Scripting vulnerability in Concrete5 An issue was discovered in concrete5 <= 5.6.3.4. | 6.1 |
| 2017-03-15 | CVE-2017-6907 | Cross-site Scripting vulnerability in Open.Gl Project Open.Gl 20170212 An issue was discovered in Open.GL before 2017-03-13. | 6.1 |
| 2017-03-15 | CVE-2017-6906 | Cross-site Scripting vulnerability in Siberiancms An issue was discovered in SiberianCMS before 4.10.0. | 6.1 |
| 2017-03-15 | CVE-2017-6905 | Cross-site Scripting vulnerability in Concrete5 An issue was discovered in concrete5 <= 5.6.3.4. | 6.1 |
| 2017-03-14 | CVE-2016-8019 | Cross-site Scripting vulnerability in Mcafee Virusscan Enterprise Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows unauthenticated remote attackers to inject arbitrary web script or HTML via a crafted user input. | 6.1 |
| 2017-03-14 | CVE-2016-8011 | Cross-site Scripting vulnerability in Intel Security Mcafee Endpoint Security web Control 10.2.0.408 Cross-site scripting vulnerability in Intel Security McAfee Endpoint Security (ENS) Web Control before 10.2.0.408.10 allows attackers to inject arbitrary web script or HTML via a crafted web site. | 6.1 |
| 2017-03-14 | CVE-2017-6877 | Cross-site Scripting vulnerability in Lutim Project Lutim Cross-site scripting (XSS) vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script. | 6.1 |