
CVE-2024-39272
https://notcve.org/view.php?id=CVE-2024-39272
06 Feb 2025 — A cross-site scripting (xss) vulnerability exists in the dataset upload functionality of ClearML Enterprise Server 3.22.5-1533. • https://talosintelligence.com/vulnerability_reports/TALOS-2024-2110 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-57599
https://notcve.org/view.php?id=CVE-2024-57599
06 Feb 2025 — Cross Site Scripting vulnerability in DouPHP v.1.8 Release 20231203 allows attackers to execute arbitrary code via a crafted payload injected into the description parameter in /admin/article.php • https://github.com/Arykon/cve/blob/main/douphp.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-48589
https://notcve.org/view.php?id=CVE-2024-48589
06 Feb 2025 — Cross Site Scripting vulnerability in Gilnei Moraes phpABook v.0.9 allows a remote attacker to execute arbitrary code via the rol parameter in index.php • https://github.com/Exek1el/CVE-2024-48589 •

CVE-2024-49793 – IBM ApplinX Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-49793
05 Feb 2025 — IBM ApplinX 11.1 is vulnerable to cross-site scripting. • https://www.ibm.com/support/pages/node/7182522 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-49792 – IBM ApplinX Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-49792
05 Feb 2025 — IBM ApplinX 11.1 is vulnerable to cross-site scripting. • https://www.ibm.com/support/pages/node/7182522 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-49791 – IBM ApplinX Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-49791
05 Feb 2025 — IBM ApplinX 11.1 is vulnerable to cross-site scripting. • https://www.ibm.com/support/pages/node/7182522 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-56472 – IBM Aspera Shares Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-56472
05 Feb 2025 — IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to stored cross-site scripting. ... IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to stored cross-site scripting. • https://www.ibm.com/support/pages/node/7182490 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2024-38318 – IBM Aspera Shares HTML injection
https://notcve.org/view.php?id=CVE-2024-38318
05 Feb 2025 — IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to HTML injection. ... IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to HTML injection. • https://www.ibm.com/support/pages/node/7182490 • CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) •

CVE-2024-38317 – IBM Aspera Shares Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2024-38317
05 Feb 2025 — IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. ... IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. • https://www.ibm.com/support/pages/node/7182490 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2025-24320 – BIG-IP Configuration utility vulnerability
https://notcve.org/view.php?id=CVE-2025-24320
05 Feb 2025 — A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. This vulnerability is due to an incomplete fix for CVE-2024-31156 https://my.f5.com/manage/s/article/K000138636 . • https://my.f5.com/manage/s/article/K000140578 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •