Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-21 | CVE-2017-12248 | Cross-site Scripting vulnerability in Cisco Unified Intelligence Center 11.5(1) A vulnerability in the web framework code of Cisco Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system. | 6.1 |
| 2017-09-20 | CVE-2017-14621 | Cross-site Scripting vulnerability in Suse Portus 2.2.0 Portus 2.2.0 has XSS via the Team field, related to typeahead. | 5.4 |
| 2017-09-20 | CVE-2015-9232 | Insufficient Verification of Data Authenticity vulnerability in Good for Enterprise 3.0.0.415 The Good for Enterprise application 3.0.0.415 for Android does not use signature protection for its Authentication Delegation API intent. | 5.3 |
| 2017-09-20 | CVE-2017-14619 | Cross-site Scripting vulnerability in PHPmyfaq Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module. | 6.1 |
| 2017-09-20 | CVE-2017-14618 | Cross-site Scripting vulnerability in PHPmyfaq Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action. | 4.8 |
| 2017-09-20 | CVE-2017-14615 | Cross-site Scripting vulnerability in Watchguard Fireware An FBX-5313 issue was discovered in WatchGuard Fireware before 12.0. | 6.1 |
| 2017-09-20 | CVE-2015-7347 | Cross-site Scripting vulnerability in Zcms Project Zcms 1.1 Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1. | 4.8 |
| 2017-09-20 | CVE-2015-5608 | Open Redirect vulnerability in Joomla Joomla! Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1. | 6.1 |
| 2017-09-20 | CVE-2015-4707 | Cross-site Scripting vulnerability in Ipython Cross-site scripting (XSS) vulnerability in IPython before 3.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving JSON error messages and the /api/notebooks path. | 6.1 |
| 2017-09-20 | CVE-2015-2927 | Resource Management Errors vulnerability in multiple products node 0.3.2 and URONode before 1.0.5r3 allows remote attackers to cause a denial of service (bandwidth consumption). | 6.5 |