Total
27529 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-24803 | 1 Wpoperation | 1 Ultra Companion | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPoperation Ultra Companion – Companion plugin for WPoperation Themes allows Stored XSS.This issue affects Ultra Companion – Companion plugin for WPoperation Themes: from n/a through 1.1.9. | ||||
CVE-2024-24804 | 1 Web-soudan | 1 Mw Wp Form | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in websoudan MW WP Form allows Stored XSS.This issue affects MW WP Form: from n/a through 5.0.6. | ||||
CVE-2024-24831 | 1 Leap13 | 1 Premium Addons For Elementor | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leap13 Premium Addons for Elementor allows Stored XSS.This issue affects Premium Addons for Elementor: from n/a through 4.10.16. | ||||
CVE-2023-51404 | 1 Myagileprivacy | 1 My Agile Privacy | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MyAgilePrivacy My Agile Privacy – The only GDPR solution for WordPress that you can truly trust allows Stored XSS.This issue affects My Agile Privacy – The only GDPR solution for WordPress that you can truly trust: from n/a through 2.1.7. | ||||
CVE-2023-51415 | 1 Givewp | 1 Givewp | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GiveWP GiveWP – Donation Plugin and Fundraising Platform allows Stored XSS.This issue affects GiveWP – Donation Plugin and Fundraising Platform: from n/a through 3.2.2. | ||||
CVE-2023-51480 | 1 Pluginus | 1 Woot | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 Active Products Tables for WooCommerce. Professional products tables for WooCommerce store allows Stored XSS.This issue affects Active Products Tables for WooCommerce. Professional products tables for WooCommerce store : from n/a through 1.0.6. | ||||
CVE-2023-51485 | 1 Wp-hosting | 1 Pay With Vipps And Mobilepay For Woocommerce | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Hosting Pay with Vipps and MobilePay for WooCommerce allows Stored XSS.This issue affects Pay with Vipps and MobilePay for WooCommerce: from n/a through 1.14.13. | ||||
CVE-2023-51488 | 1 Automattic | 1 Crowdsignal Dashboard | 2024-06-27 | 6.1 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic, Inc. Crowdsignal Dashboard – Polls, Surveys & more allows Reflected XSS.This issue affects Crowdsignal Dashboard – Polls, Surveys & more: from n/a through 3.0.11. | ||||
CVE-2023-51493 | 1 Howardehrenberg | 1 Custom Post Carousels With Owl | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Howard Ehrenberg Custom Post Carousels with Owl allows Stored XSS.This issue affects Custom Post Carousels with Owl: from n/a through 1.4.6. | ||||
CVE-2024-23514 | 1 Clicktotweet | 1 Click To Tweet | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ClickToTweet.Com Click To Tweet allows Stored XSS.This issue affects Click To Tweet: from n/a through 2.0.14. | ||||
CVE-2024-23517 | 1 Startbooking | 1 Scheduling Plugin | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Start Booking Scheduling Plugin – Online Booking for WordPress allows Stored XSS.This issue affects Scheduling Plugin – Online Booking for WordPress: from n/a through 3.5.10. | ||||
CVE-2023-47526 | 1 Ays-pro | 1 Chartify | 2024-06-27 | 4.8 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chart Builder Team Chartify – WordPress Chart Plugin allows Stored XSS.This issue affects Chartify – WordPress Chart Plugin: from n/a through 2.0.6. | ||||
CVE-2024-23516 | 1 Calculatorsworld | 1 Cc Bmi Calculator | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Calculators World CC BMI Calculator allows Stored XSS.This issue affects CC BMI Calculator: from n/a through 2.0.1. | ||||
CVE-2024-24130 | 1 Mail2world | 1 Mail2world | 2024-06-27 | 6.1 Medium |
Mail2World v12 Business Control Center was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the Usr parameter at resellercenter/login.asp. | ||||
CVE-2024-21389 | 1 Microsoft | 1 Dynamics 365 | 2024-06-27 | 7.6 High |
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | ||||
CVE-2024-25297 | 1 Bludit | 1 Bludit | 2024-06-27 | 4.8 Medium |
Cross Site Scripting (XSS) vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php. | ||||
CVE-2023-51666 | 1 Pickplugins | 1 Related Post | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Related Post allows Stored XSS.This issue affects Related Post: from n/a through 2.0.53. | ||||
CVE-2023-51669 | 1 Artiosmedia | 1 Product Code For Woocommerce | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Artios Media Product Code for WooCommerce allows Stored XSS.This issue affects Product Code for WooCommerce: from n/a through 1.4.4. | ||||
CVE-2023-51674 | 1 Vasyltech | 1 Advanced Access Manager | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AAM Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More allows Stored XSS.This issue affects Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More: from n/a through 6.9.18. | ||||
CVE-2023-51677 | 1 Structured-data-for-wp | 1 Download Schema \& Structured Data For Wp \& Amp | 2024-06-27 | 5.4 Medium |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Magazine3 Schema & Structured Data for WP & AMP allows Stored XSS.This issue affects Schema & Structured Data for WP & AMP: from n/a through 1.23. |