Vulnerabilities > F5 > Websafe Alert Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-01 | CVE-2016-5236 | Cross-site Scripting vulnerability in F5 Websafe Alert Server 1.0.0/3.9.5 Cross-Site-Scripting (XSS) vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature. | 5.4 |
| 2019-07-01 | CVE-2016-5235 | Cross-site Scripting vulnerability in F5 Websafe Alert Server 1.0.0/3.9.5 A Cross Site Scripting (XSS) vulnerability in versions of F5 WebSafe Dashboard 3.9.x and earlier, aka F5 WebSafe Alert Server, allows an unauthenticated user to inject HTML via a crafted alert. | 6.1 |