The Yii2-StateMachine extension v2.x.x for Yii2 has XSS.

The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter.

xowl/request.php in Ximdex 4.0 has XSS via the content parameter.

system\errors\404.php in HongCMS 3.0.0 has XSS via crafted input that triggers a 404 HTTP status code.

URLs using "javascript:" have the protocol removed when pasted into the addressbar to protect users from cross-site scripting (XSS) attacks, but if a tab character is embedded in the "javascript:" URL the protocol is not removed and the script will execute. This could allow users to be socially engineered to run an XSS attack against themselves. This vulnerability affects Firefox < 59.

When a "javascript:" URL is drag and dropped by a user into the addressbar, the URL will be processed and executed. This allows for users to be socially engineered to execute an XSS attack on themselves. This vulnerability affects Firefox < 53.

The "mozAddonManager" allows for the installation of extensions from the CDN for addons.mozilla.org, a publicly accessible site. This could allow malicious extensions to install additional extensions from the CDN in combination with an XSS attack on Mozilla AMO sites. This vulnerability affects Firefox < 51.

Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI.

Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links.

Twonky Server before 8.5.1 has XSS via a modified "language" parameter in the Language section.

Twonky Server before 8.5.1 has XSS via a folder name on the Shared Folders screen.

xfind/search in Ximdex 4.0 has XSS via the filter[n][value] parameters for non-negative values of n, as demonstrated by n equal to 0 through 12.

content/content.blueprintspages.php in Symphony 2.7.6 has XSS via the pages content page.

bracket-template suffers from reflected XSS possible when variable passed via GET parameter is used in template

SGIN.CN xiangyun platform V9.4.10 has XSS via the login_url parameter to /login.php.

index.php?action=createaccount in Ximdex 4.0 has XSS via the sname or fname parameter.

nZEDb v0.7.3.3 has XSS in the 404 error page.

Sanitize-html is a library for scrubbing html input of malicious values. Versions 1.11.1 and below are vulnerable to cross site scripting (XSS) in certain scenarios: If allowed at least one nonTextTags, the result is a potential XSS vulnerability.

The Recent Threads plugin before 1.1 for MyBB allows XSS via a thread subject.

Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A user with elevated privileges could upload a photo to the system in an SVG format. This file will be uploaded to the system and it will not be stripped or filtered. The user can create a link on the website pointing to "/storage/poc.svg" that will point to http://localhost/pagekit/storage/poc.svg. When a user comes along to click that link, it will trigger a XSS attack.