Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-18 | CVE-2007-5562 | Cross-Site Scripting vulnerability in Netgear Ssl312 Cross-site scripting (XSS) vulnerability in cgi-bin/welcome (aka the login page) in Netgear SSL312 PROSAFE SSL VPN-Concentrator 25 allows remote attackers to inject arbitrary web script or HTML via the err parameter in the context of an error page. | 4.3 |
2007-10-18 | CVE-2007-5547 | Cross-Site Scripting vulnerability in Cisco IOS Cross-site scripting (XSS) vulnerability in Cisco IOS allows remote attackers to inject arbitrary web script or HTML, and execute IOS commands, via unspecified vectors, aka PSIRT-2022590358. | 4.3 |
2007-10-16 | CVE-2007-5480 | Cross-Site Scripting vulnerability in Innovaage Innovashop Multiple cross-site scripting (XSS) vulnerabilities in InnovaAge InnovaShop allow remote attackers to inject arbitrary web script or HTML via the (1) msg parameter to msg.jsp, and the (2) contentid parameter to tc/contents/home001.jsp. | 4.3 |
2007-10-16 | CVE-2007-5479 | Cross-Site Scripting vulnerability in Xcomputer Cross-site scripting (XSS) vulnerability in Search.asp in Xcomputer allows remote attackers to inject arbitrary web script or HTML via the EXPS parameter. | 4.3 |
2007-10-16 | CVE-2007-5478 | Cross-Site Scripting vulnerability in Nabh Information Systems Stringbeans Portal 3.2 Cross-site scripting (XSS) vulnerability in projects in Nabh Stringbeans Portal (sbportal) 3.2 allows remote attackers to inject arbitrary web script or HTML via the project_name parameter. | 4.3 |
2007-10-14 | CVE-2007-5459 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in the sidebar HTML page in the MouseoverDictionary before 0.6.2 extension for Mozilla Firefox allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
2007-10-14 | CVE-2007-5455 | Cross-Site Scripting vulnerability in Wwwisis 5.0 Cross-site scripting (XSS) vulnerability in wxis.exe in WWWISIS 7.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a call to the iah/iah.xis IsisScript code, possibly involving the lang or exprSearch parameter. | 4.3 |
2007-10-14 | CVE-2007-5443 | Cross-Site Scripting vulnerability in Cmsmadesimple CMS Made Simple 1.1.3.1 Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.1.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) the anchor tag and (2) listtags. | 4.3 |
2007-10-12 | CVE-2007-5434 | Cross-Site Scripting vulnerability in Pro.Setun Pro-Search Cross-site scripting (XSS) vulnerability in PRO-search 0.17.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the q parameter to the default URI. | 4.3 |
2007-10-12 | CVE-2007-5433 | Cross-Site Scripting vulnerability in Siteup 2.64 Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Site-Up 2.64 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) search or (2) search mask field. | 4.3 |