Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2016-10-26 CVE-2016-8506 Cross-site Scripting vulnerability in Yandex Browser
XSS in Yandex Browser Translator in Yandex browser for desktop for versions from 15.12 to 16.2 could be used by remote attacker for evaluation arbitrary javascript code.
network
low complexity
yandex CWE-79
6.1
6.1
2016-10-26 CVE-2016-8505 Cross-site Scripting vulnerability in Yandex Yandex.Browser 16.4.0.94.4
XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6.
network
low complexity
yandex CWE-79
6.1
6.1
2016-10-25 CVE-2016-5512 Cross-site Scripting vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5521.
network
low complexity
oracle CWE-79
6.1
6.1
2016-10-22 CVE-2016-0246 Cross-site Scripting vulnerability in IBM Security Guardium
Cross-site scripting (XSS) vulnerability in IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
network
low complexity
ibm CWE-79
6.1
6.1
2016-10-14 CVE-2016-3056 Cross-site Scripting vulnerability in IBM Business Process Manager
Cross-site scripting (XSS) vulnerability in Business Space in IBM Business Process Manager 7.5 through 7.5.1.2, 8.0 through 8.0.1.3, and 8.5 before 8.5.7.0 CF2016.09 allows remote authenticated users to inject arbitrary web script or HTML via crafted content.
network
low complexity
ibm CWE-79
5.4
5.4
2016-10-10 CVE-2016-1000155 Cross-site Scripting vulnerability in Wpsolr Wpsolr-Search-Engine 7.6
Reflected XSS in wordpress plugin wpsolr-search-engine v7.6
network
low complexity
wpsolr CWE-79
6.1
6.1
2016-10-10 CVE-2016-1000154 Cross-site Scripting vulnerability in Browserweb Whizz
Reflected XSS in wordpress plugin whizz v1.0.7
network
low complexity
browserweb CWE-79
6.1
6.1
2016-10-10 CVE-2016-1000153 Cross-site Scripting vulnerability in Tidio-Gallery Project Tidio-Gallery 1.1
Reflected XSS in wordpress plugin tidio-gallery v1.1
network
low complexity
tidio-gallery-project CWE-79
6.1
6.1
2016-10-10 CVE-2016-1000152 Cross-site Scripting vulnerability in Tidio-Form Project Tidio-Form 1.0
Reflected XSS in wordpress plugin tidio-form v1.0
network
low complexity
tidio-form-project CWE-79
6.1
6.1
2016-10-10 CVE-2016-1000151 Cross-site Scripting vulnerability in Tera-Charts Project Tera-Charts 1.0
Reflected XSS in wordpress plugin tera-charts v1.0
network
low complexity
tera-charts-project CWE-79
6.1
6.1