Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-14	CVE-2024-25218	Cross-site Scripting vulnerability in Task Manager in PHP With Source Code Project Task Manager in PHP With Source Code 1.0 A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Project Name parameter /TaskManager/Projects.php. network low complexity task-manager-in-php-with-source-code-project CWE-79	6.1
2024-02-14	CVE-2024-25219	Cross-site Scripting vulnerability in Task Manager in PHP With Source Code Project Task Manager in PHP With Source Code 1.0 A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Task Name parameter /TaskManager/Task.php. network low complexity task-manager-in-php-with-source-code-project CWE-79	6.1
2024-02-14	CVE-2024-25221	Cross-site Scripting vulnerability in Task Manager in PHP With Source Code Project Task Manager in PHP With Source Code 1.0 A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Note Section parameter at /TaskManager/Tasks.php. network low complexity task-manager-in-php-with-source-code-project CWE-79	6.1
2024-02-14	CVE-2024-25224	Cross-site Scripting vulnerability in Code-Projects Simple Admin Panel 1.0 A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function. network low complexity code-projects CWE-79	5.4
2024-02-14	CVE-2024-25225	Cross-site Scripting vulnerability in Code-Projects Simple Admin Panel 1.0 A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function. network low complexity code-projects CWE-79	5.4
2024-02-14	CVE-2024-25226	Cross-site Scripting vulnerability in Code-Projects Simple Admin Panel 1.0 A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function. network low complexity code-projects CWE-79	6.1
2024-02-14	CVE-2024-23786	Cross-site Scripting vulnerability in Sharp Jh-Rv11 Firmware and Jh-Rvb1 Firmware Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page of the affected product. network low complexity sharp CWE-79 critical	9.3
2024-02-14	CVE-2023-48985	Cross-site Scripting vulnerability in Cusg Content Management System Cross Site Scripting (XSS) vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component. network low complexity cusg CWE-79	6.1
2024-02-14	CVE-2023-48986	Cross-site Scripting vulnerability in Cusg Content Management System Cross Site Scripting (XSS) vulnerability in CU Solutions Group (CUSG) Content Management System (CMS) before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component. network low complexity cusg CWE-79	6.1
2024-02-13	CVE-2024-1084	Cross-site Scripting vulnerability in Github Enterprise Server Cross-site Scripting in the tag name pattern field in the tag protections UI in GitHub Enterprise Server allows a malicious website that requires user interaction and social engineering to make changes to a user account via CSP bypass with created CSRF tokens. network low complexity github CWE-79	6.1