Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-10 | CVE-2024-36359 | Cross-site Scripting vulnerability in Trendmicro Interscan web Security Virtual Appliance 6.5 A cross-site scripting (XSS) vulnerability in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 could allow an attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. | 5.4 |
| 2024-06-10 | CVE-2024-36413 | Cross-site Scripting vulnerability in Salesagility Suitecrm SuiteCRM is an open-source Customer Relationship Management (CRM) software application. | 5.4 |
| 2024-06-10 | CVE-2024-36417 | Cross-site Scripting vulnerability in Salesagility Suitecrm SuiteCRM is an open-source Customer Relationship Management (CRM) software application. | 9.0 |
| 2024-06-10 | CVE-2022-45176 | Cross-site Scripting vulnerability in Liveboxcloud Vdesk An issue was discovered in LIVEBOX Collaboration vDesk through v018. | 5.4 |
| 2024-06-08 | CVE-2024-35697 | Cross-site Scripting vulnerability in Thimpress Eduma Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThimPress Eduma allows Reflected XSS.This issue affects Eduma: from n/a through 5.4.7. | 6.1 |
| 2024-06-08 | CVE-2024-35703 | Cross-site Scripting vulnerability in Sinaextra Sina Extension for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SinaExtra Sina Extension for Elementor allows Stored XSS.This issue affects Sina Extension for Elementor: from n/a through 3.5.3. | 5.4 |
| 2024-06-08 | CVE-2024-35708 | Cross-site Scripting vulnerability in Apollo13Themes Rife Free Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in apollo13themes Rife Free allows Stored XSS.This issue affects Rife Free: from n/a through 2.4.19. | 5.4 |
| 2024-06-08 | CVE-2024-5766 | Cross-site Scripting vulnerability in Likeshop A vulnerability was found in Likeshop up to 2.5.7 and classified as problematic. | 4.8 |
| 2024-06-08 | CVE-2024-35753 | Cross-site Scripting vulnerability in Templatesnext Onepager Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TemplatesNext TemplatesNext OnePager allows Stored XSS.This issue affects TemplatesNext OnePager: from n/a through 1.3.3. | 5.4 |
| 2024-06-08 | CVE-2024-5663 | Cross-site Scripting vulnerability in Ultimateaddons Cards for Beaver Builder The Cards for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Cards widget in all versions up to, and including, 1.1.3 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |