) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): xss
- Search Type: Search All
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-51691 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gVectors Team Comments – wpDiscuz allows Stored XSS.This issue affects Comments – wpDiscuz: from n/a through 7.6.12. Published: February 01, 2024; 6:15:12 AM -0500 |
V3.1: 4.8 MEDIUM V2.0:(not available) |
| CVE-2023-51690 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Advanced iFrame allows Stored XSS.This issue affects Advanced iFrame: from n/a through 2023.8. Published: February 01, 2024; 6:15:11 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51689 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in naa986 Easy Video Player allows Stored XSS.This issue affects Easy Video Player: from n/a through 1.2.2.10. Published: February 01, 2024; 6:15:11 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51685 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LJ Apps WP Review Slider allows Stored XSS.This issue affects WP Review Slider: from n/a through 12.7. Published: February 01, 2024; 6:15:11 AM -0500 |
V3.1: 4.8 MEDIUM V2.0:(not available) |
| CVE-2023-51684 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Easy Digital Downloads Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy) allows Stored XSS.This issue affects Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy): from n/a through 3.2.5. Published: February 01, 2024; 6:15:11 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51677 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Magazine3 Schema & Structured Data for WP & AMP allows Stored XSS.This issue affects Schema & Structured Data for WP & AMP: from n/a through 1.23. Published: February 01, 2024; 6:15:11 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51674 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AAM Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More allows Stored XSS.This issue affects Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More: from n/a through 6.9.18. Published: February 01, 2024; 6:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51669 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Artios Media Product Code for WooCommerce allows Stored XSS.This issue affects Product Code for WooCommerce: from n/a through 1.4.4. Published: February 01, 2024; 6:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51666 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Related Post allows Stored XSS.This issue affects Related Post: from n/a through 2.0.53. Published: February 01, 2024; 6:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-51548 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Neil Gee SlickNav Mobile Menu allows Stored XSS.This issue affects SlickNav Mobile Menu: from n/a through 1.9.2. Published: February 01, 2024; 6:15:10 AM -0500 |
V3.1: 4.8 MEDIUM V2.0:(not available) |
| CVE-2023-51540 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kunal Nagar Custom 404 Pro allows Stored XSS.This issue affects Custom 404 Pro: from n/a through 3.10.0. Published: February 01, 2024; 6:15:10 AM -0500 |
V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2023-51536 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks Forms – WordPress Form Builder allows Stored XSS.This issue affects CRM Perks Forms – WordPress Form Builder: from n/a through 1.1.2. Published: February 01, 2024; 6:15:09 AM -0500 |
V3.1: 4.8 MEDIUM V2.0:(not available) |
| CVE-2023-51534 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brave Brave – Create Popup, Optins, Lead Generation, Survey, Sticky Elements & Interactive Content allows Stored XSS.This issue affects Brave – Create Popup, Optins, Lead Generation, Survey, Sticky Elements & Interactive Content: from n/a through 0.6.2. Published: February 01, 2024; 6:15:09 AM -0500 |
V3.1: 4.8 MEDIUM V2.0:(not available) |
| CVE-2023-51532 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building allows Stored XSS.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.19. Published: February 01, 2024; 6:15:08 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2024-22148 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Smart Editor JoomUnited allows Reflected XSS.This issue affects JoomUnited: from n/a through 1.3.3. Published: February 01, 2024; 5:15:12 AM -0500 |
V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2024-21750 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Scribit Shortcodes Finder allows Reflected XSS.This issue affects Shortcodes Finder: from n/a through 1.5.5. Published: February 01, 2024; 5:15:11 AM -0500 |
V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2023-52195 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Posts to Page Kerry James allows Stored XSS.This issue affects Kerry James: from n/a through 1.7. Published: February 01, 2024; 5:15:11 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-52194 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Takayuki Miyauchi oEmbed Gist allows Stored XSS.This issue affects oEmbed Gist: from n/a through 4.9.1. Published: February 01, 2024; 5:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-52193 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Live Composer Team Page Builder: Live Composer allows Stored XSS.This issue affects Page Builder: Live Composer: from n/a through 1.5.23. Published: February 01, 2024; 5:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |
| CVE-2023-52192 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Keap Keap Official Opt-in Forms allows Stored XSS.This issue affects Keap Official Opt-in Forms: from n/a through 1.0.11. Published: February 01, 2024; 5:15:10 AM -0500 |
V3.1: 5.4 MEDIUM V2.0:(not available) |