NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

There are 243,830 matching records.

Displaying matches 26,201 through 26,220.

Vuln ID	Summary	CVSS Severity
CVE-2023-47834	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ExpressTech Quiz And Survey Master plugin <= 8.1.13 versions. Published: November 22, 2023; 7:15:08 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47833	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeroen Schmit Theater for WordPress plugin <= 0.18.3 versions. Published: November 22, 2023; 7:15:08 PM -0500	V4.0:(not available) V3.1: 4.8 MEDIUM V2.0:(not available)
CVE-2023-47790	Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) vulnerability in Poporon Pz-LinkCard plugin <= 2.4.8 versions. Published: November 22, 2023; 7:15:08 PM -0500	V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available)
CVE-2023-47668	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StellarWP Membership Plugin – Restrict Content plugin <= 3.2.7 versions. Published: November 22, 2023; 7:15:08 PM -0500	V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available)
CVE-2023-40002	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pluggabl LLC Booster for WooCommerce plugin <= 7.1.1 versions. Published: November 22, 2023; 7:15:08 PM -0500	V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available)
CVE-2023-30581	The use of __proto__ in process.mainModule.__proto__.require() can bypass the policy mechanism and require modules outside of the policy.json definition. This vulnerability affects all users using the experimental policy mechanism in all active release lines: v16, v18 and, v20. Please note that at the time this CVE was issued, the policy is an experimental feature of Node.js Published: November 22, 2023; 7:15:07 PM -0500	V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available)
CVE-2023-23978	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SwitchWP WP Client Reports plugin <= 1.0.16 versions. Published: November 22, 2023; 7:15:07 PM -0500	V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available)
CVE-2023-48107	Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mz_path_has_slash function in the mz_os.c file. Published: November 22, 2023; 6:15:10 PM -0500	V4.0:(not available) V3.1: 8.8 HIGH V2.0:(not available)
CVE-2023-48105	An heap overflow vulnerability was discovered in Bytecode alliance wasm-micro-runtime v.1.2.3 allows a remote attacker to cause a denial of service via the wasm_loader_prepare_bytecode function in core/iwasm/interpreter/wasm_loader.c. Published: November 22, 2023; 6:15:10 PM -0500	V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available)
CVE-2023-47831	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in assorted[chips] DrawIt (draw.Io) plugin <= 1.1.3 versions. Published: November 22, 2023; 6:15:10 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47829	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Codez Quick Call Button plugin <= 1.2.9 versions. Published: November 22, 2023; 6:15:10 PM -0500	V4.0:(not available) V3.1: 4.8 MEDIUM V2.0:(not available)
CVE-2023-47821	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jannis Thuemmig Email Encoder plugin <= 2.1.8 versions. Published: November 22, 2023; 6:15:10 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47817	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mmrs151 Daily Prayer Time plugin <= 2023.10.13 versions. Published: November 22, 2023; 6:15:09 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47816	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Charitable Donations & Fundraising Team Donation Forms by Charitable plugin <= 1.7.0.13 versions. Published: November 22, 2023; 6:15:09 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47815	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Venutius BP Profile Shortcodes Extra plugin <= 2.5.2 versions. Published: November 22, 2023; 6:15:09 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47814	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Waterloo Plugins BMI Calculator Plugin plugin <= 1.0.3 versions. Published: November 22, 2023; 6:15:09 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47813	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grandslambert Better RSS Widget plugin <= 2.8.1 versions. Published: November 22, 2023; 6:15:09 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47812	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bamboo Mcr Bamboo Columns plugin <= 1.6.1 versions. Published: November 22, 2023; 6:15:08 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47811	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Suresh KUMAR Mukhiya Anywhere Flash Embed plugin <= 1.0.5 versions. Published: November 22, 2023; 6:15:08 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)
CVE-2023-47810	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Asdqwe Dev Ajax Domain Checker plugin <= 1.3.0 versions. Published: November 22, 2023; 6:15:08 PM -0500	V4.0:(not available) V3.1: 5.4 MEDIUM V2.0:(not available)