U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): xss
  • Search Type: Search All
There are 7,317 matching records.
Displaying matches 101 through 120.
Vuln ID Summary CVSS Severity
CVE-2024-32083

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Varun Kumar Easy Logo allows Stored XSS.This issue affects Easy Logo: from n/a through 1.9.3.

Published: April 11, 2024; 9:15:55 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31937

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visitor Analytics TWIPLA (Visitor Analytics IO) allows Stored XSS.This issue affects TWIPLA (Visitor Analytics IO): from n/a through 1.2.0.

Published: April 11, 2024; 9:15:55 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31931

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Save as Image plugin by Pdfcrowd allows Stored XSS.This issue affects Save as Image plugin by Pdfcrowd: from n/a through 3.2.1 .

Published: April 11, 2024; 9:15:54 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31930

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 3.2.1 .

Published: April 11, 2024; 9:15:54 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31929

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Polevaultweb Intagrate Lite allows Stored XSS.This issue affects Intagrate Lite: from n/a through 1.3.7.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31928

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Darko Top Bar allows Stored XSS.This issue affects Top Bar: from n/a through 3.0.5.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31927

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aminur Islam WP Login and Logout Redirect allows Stored XSS.This issue affects WP Login and Logout Redirect: from n/a through 1.2.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31926

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BracketSpace Advanced Cron Manager – debug & control allows Stored XSS.This issue affects Advanced Cron Manager – debug & control: from n/a through 2.5.2.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31925

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Improvements allows Stored XSS.This issue affects F4 Improvements: from n/a through 1.8.0.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31387

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Popup LikeBox Team Popup Like box allows Stored XSS.This issue affects Popup Like box: from n/a through 3.7.2.

Published: April 11, 2024; 9:15:53 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31361

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bunny.Net allows Stored XSS.This issue affects bunny.Net: from n/a through 2.0.1.

Published: April 11, 2024; 9:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-31285

Cross-Site Request Forgery (CSRF) vulnerability in Tooltip WordPress Tooltips allows Stored XSS.This issue affects WordPress Tooltips: from n/a through 9.5.3.

Published: April 11, 2024; 9:15:52 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-32080

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nick Pelton Search Keyword Redirect allows Stored XSS.This issue affects Search Keyword Redirect: from n/a through 1.0.

Published: April 11, 2024; 5:15:08 AM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27992

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Whisper Link Whisper Free allows Reflected XSS.This issue affects Link Whisper Free: from n/a through 0.6.8.

Published: April 10, 2024; 9:25:08 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27991

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SupportCandy allows Stored XSS.This issue affects SupportCandy: from n/a through 3.2.3.

Published: April 10, 2024; 9:25:07 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27990

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in The Moneytizer allows Stored XSS.This issue affects The Moneytizer: from n/a through 9.5.20.

Published: April 10, 2024; 9:25:07 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27989

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs allows Stored XSS.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through 1.1.17.

Published: April 10, 2024; 9:25:07 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27988

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WEN Themes WEN Responsive Columns allows Stored XSS.This issue affects WEN Responsive Columns: from n/a through 1.3.2.

Published: April 10, 2024; 9:25:07 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27969

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Enhanced Free Downloads WooCommerce allows Stored XSS.This issue affects Free Downloads WooCommerce: from n/a through 3.5.8.2.

Published: April 10, 2024; 9:25:06 PM -0400
V3.x:(not available)
V2.0:(not available)
CVE-2024-27966

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master allows Stored XSS.This issue affects Quiz And Survey Master: from n/a through 8.2.2.

Published: April 10, 2024; 9:25:06 PM -0400
V3.x:(not available)
V2.0:(not available)