Vulnerabilities > Rapid7 > Nexpose > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-12-20 | CVE-2016-9757 | Cross-site Scripting vulnerability in Rapid7 Nexpose 6.4.12 In the Create Tags page of the Rapid7 Nexpose version 6.4.12 user interface, any authenticated user who has the capability to create tags can inject cross-site scripting (XSS) elements in the tag name field. | 3.5 |