Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-26	CVE-2024-44795	Cross-site Scripting vulnerability in Gazelle Project Gazelle A cross-site scripting (XSS) vulnerability in the component /login/disabled.php of Gazelle commit 63b3370 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter. network low complexity gazelle-project CWE-79	6.1
2024-08-26	CVE-2024-44796	Cross-site Scripting vulnerability in Xiebruce Picuploader A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error_description parameter. network low complexity xiebruce CWE-79	6.1
2024-08-26	CVE-2024-44797	Cross-site Scripting vulnerability in Gazelle Project Gazelle A cross-site scripting (XSS) vulnerability in the component /managers/enable_requests.php of Gazelle commit 63b3370 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the view parameter. network low complexity gazelle-project CWE-79	6.1
2024-08-26	CVE-2024-42790	Cross-site Scripting vulnerability in Lopalopa Music Management System 1.0 A Reflected Cross Site Scripting (XSS) vulnerability was found in "/music/index.php?page=test" in Kashipara Music Management System v1.0. network low complexity lopalopa CWE-79	5.4
2024-08-26	CVE-2024-8174	Cross-site Scripting vulnerability in Blood Bank System Project Blood Bank System 1.0 A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. network low complexity blood-bank-system-project CWE-79	6.1
2024-08-26	CVE-2024-43967	Cross-site Scripting vulnerability in Starkdigital WP Testimonial Widget Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Stark Digital WP Testimonial Widget allows Stored XSS.This issue affects WP Testimonial Widget: from n/a through 3.1. network low complexity starkdigital CWE-79	4.8
2024-08-26	CVE-2024-8172	Cross-site Scripting vulnerability in Rems QR Code Attendance System 1.0 A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Attendance System 1.0. network low complexity rems CWE-79	6.1
2024-08-26	CVE-2024-38859	Cross-site Scripting vulnerability in Checkmk 2.1.0/2.2.0/2.3.0 XSS in the view page with the SLA column configured in Checkmk versions prior to 2.3.0p14, 2.2.0p33, 2.1.0p47 and 2.0.0 (EOL) allowed malicious users to execute arbitrary scripts by injecting HTML elements into the SLA column title. network low complexity checkmk CWE-79	6.1
2024-08-25	CVE-2024-8152	Cross-site Scripting vulnerability in Rems QR Code Bookmark System 1.0 A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. network low complexity rems CWE-79	5.4
2024-08-25	CVE-2024-8153	Cross-site Scripting vulnerability in Rems QR Code Bookmark System 1.0 A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. network low complexity rems CWE-79	5.4