) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): xss
- Search Type: Search Last 3 Months
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2024-32564 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Post Grid Team by WPXPO PostX – Gutenberg Blocks for Post Grid allows Stored XSS.This issue affects PostX – Gutenberg Blocks for Post Grid: from n/a through 4.0.1. Published: April 18, 2024; 6:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32563 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VikBooking Hotel Booking Engine & PMS allows Reflected XSS.This issue affects VikBooking Hotel Booking Engine & PMS: from n/a through 1.6.7. Published: April 18, 2024; 6:15:10 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32562 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VIICTORY MEDIA LLC Z Y N I T H allows Stored XSS.This issue affects Z Y N I T H: from n/a through 7.4.9. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32561 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tagembed allows Stored XSS.This issue affects Tagembed: from n/a through 4.7. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32560 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sharabindu QR Code Composer allows Stored XSS.This issue affects QR Code Composer: from n/a through 2.0.3. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32559 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hwk-fr WP 404 Auto Redirect to Similar Post allows Reflected XSS.This issue affects WP 404 Auto Redirect to Similar Post: from n/a through 1.0.4. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32558 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in impleCode eCommerce Product Catalog allows Reflected XSS.This issue affects eCommerce Product Catalog: from n/a through 3.3.32. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32556 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nabil Lemsieh HurryTimer allows Stored XSS.This issue affects HurryTimer: from n/a through 2.9.2. Published: April 18, 2024; 6:15:09 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32554 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Knight Lab Knight Lab Timeline allows Stored XSS.This issue affects Knight Lab Timeline: from n/a through 3.9.3.4. Published: April 18, 2024; 6:15:08 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-29003 |
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. This vulnerability requires authentication and requires user interaction. Published: April 18, 2024; 6:15:08 AM -0400 |
V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2024-32598 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Booking Algorithms BA Book Everything allows Stored XSS.This issue affects BA Book Everything: from n/a through 1.6.8. Published: April 18, 2024; 5:15:14 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32597 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xylus Themes WordPress Importer allows Stored XSS.This issue affects WordPress Importer: from n/a through 1.0.7. Published: April 18, 2024; 5:15:14 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32596 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eric-Oliver Mächler DSGVO Youtube allows Stored XSS.This issue affects DSGVO Youtube: from n/a through 1.4.5. Published: April 18, 2024; 5:15:14 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32595 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mat Bao Corp WP Helper Premium allows Reflected XSS.This issue affects WP Helper Premium: from n/a before 4.6.0. Published: April 18, 2024; 5:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32594 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AttesaWP Attesa Extra allows Stored XSS.This issue affects Attesa Extra: from n/a through 1.3.9. Published: April 18, 2024; 5:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32593 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPBits WPBITS Addons For Elementor Page Builder allows Stored XSS.This issue affects WPBITS Addons For Elementor Page Builder: from n/a through 1.3.4.2. Published: April 18, 2024; 5:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32592 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VoidCoders, innovs Void Elementor WHMCS Elements For Elementor Page Builder allows Stored XSS.This issue affects Void Elementor WHMCS Elements For Elementor Page Builder: from n/a through 2.0. Published: April 18, 2024; 5:15:13 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32591 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniele De Rosa Backend Designer allows Stored XSS.This issue affects Backend Designer: from n/a through 1.3. Published: April 18, 2024; 5:15:12 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32590 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webfood Kattene allows Stored XSS.This issue affects Kattene: from n/a through 1.7. Published: April 18, 2024; 5:15:12 AM -0400 |
V3.x:(not available) V2.0:(not available) |
| CVE-2024-32588 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress LearnPress Export Import allows Reflected XSS.This issue affects LearnPress Export Import: from n/a through 4.0.3. Published: April 18, 2024; 5:15:12 AM -0400 |
V3.x:(not available) V2.0:(not available) |