Vulnerabilities > F5 > Websafe Alert Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-01 | CVE-2016-5236 | Cross-site Scripting vulnerability in F5 Websafe Alert Server 1.0.0/3.9.5 Cross-Site-Scripting (XSS) vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature. | 3.5 |
| 2019-07-01 | CVE-2016-5235 | Cross-site Scripting vulnerability in F5 Websafe Alert Server 1.0.0/3.9.5 A Cross Site Scripting (XSS) vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert. | 4.3 |
| 2018-09-13 | CVE-2018-5545 | Improper Input Validation vulnerability in F5 Websafe Alert Server On F5 WebSafe Alert Server 1.0.0-4.2.6, a malicious, authenticated user can execute code on the alert server by using a maliciously crafted payload. | 6.5 |