Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-13 | CVE-2024-7739 | Cross-site Scripting vulnerability in Yzane Markdown PDF 1.5.0 A vulnerability, which was classified as problematic, was found in yzane vscode-markdown-pdf 1.5.0. | 6.1 |
| 2024-08-13 | CVE-2024-38108 | Cross-site Scripting vulnerability in Microsoft Azure Stack HUB Azure Stack Hub Spoofing Vulnerability | 9.3 |
| 2024-08-13 | CVE-2024-38211 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.1 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 8.2 |
| 2024-08-13 | CVE-2024-7733 | Cross-site Scripting vulnerability in Xjd2020 Fastcms A vulnerability, which was classified as problematic, was found in FastCMS up to 0.1.5. | 5.4 |
| 2024-08-13 | CVE-2024-41613 | Cross-site Scripting vulnerability in Symphony-Cms Symphony CMS 2.7.10 A Cross Site Scripting (XSS) vulnerability in Symphony CMS 2.7.10 allows remote attackers to inject arbitrary web script or HTML by editing note. | 5.4 |
| 2024-08-13 | CVE-2024-41614 | Cross-site Scripting vulnerability in Symphony-Cms Symphony CMS symphonycms <=2.7.10 is vulnerable to Cross Site Scripting (XSS) in the Comment component for articles. | 4.8 |
| 2024-08-13 | CVE-2023-26211 | Cross-site Scripting vulnerability in Fortinet Fortisoar An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSOAR 7.3.0 through 7.3.2 allows an authenticated, remote attacker to inject arbitrary web script or HTML via the Communications module. | 9.0 |
| 2024-08-13 | CVE-2024-38501 | Cross-site Scripting vulnerability in Pepperl-Fuchs products An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device. | 6.1 |
| 2024-08-13 | CVE-2024-38502 | Cross-site Scripting vulnerability in Pepperl-Fuchs products An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once. | 7.1 |
| 2024-08-13 | CVE-2024-5849 | Cross-site Scripting vulnerability in Pepperl-Fuchs products An unauthenticated remote attacker may use a reflected XSS vulnerability to obtain information from a user or reboot the affected device once. | 7.1 |