Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-04 | CVE-2024-45429 | Cross-site Scripting vulnerability in Wpengine Advanced Custom Fields Cross-site scripting vulnerability exists in Advanced Custom Fields versions 6.3.5 and earlier and Advanced Custom Fields Pro versions 6.3.5 and earlier. | 6.1 |
| 2024-09-04 | CVE-2024-2166 | Cross-site Scripting vulnerability in Forcepoint Email Security Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Email Security (Real Time Monitor modules) allows Reflected XSS.This issue affects Email Security: before 8.5.5 HF003. | 6.1 |
| 2024-09-04 | CVE-2024-45399 | Cross-site Scripting vulnerability in Cern Indico Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. | 6.1 |
| 2024-09-04 | CVE-2024-44819 | Cross-site Scripting vulnerability in Zzcms Cross Site Scripting vulnerability in ZZCMS v.2023 and before allows a remote attacker to obtain sensitive information via a crafted script to the pagename parameter of the admin/del.php component. | 6.1 |
| 2024-09-04 | CVE-2024-44820 | Cross-site Scripting vulnerability in Zzcms A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the eginfo.php file located at /3/E_bak5.1/upload/. | 6.1 |
| 2024-09-04 | CVE-2024-7077 | Cross-site Scripting vulnerability in Semtekyazilim Semtek Sempos Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Semtek Informatics Software Consulting Inc. | 6.1 |
| 2024-09-04 | CVE-2024-8411 | Cross-site Scripting vulnerability in Abcd-Community Abcd 2.2.0 A vulnerability, which was classified as problematic, has been found in ABCD ABCD2 up to 2.2.0-beta-1. | 4.3 |
| 2024-09-04 | CVE-2024-8407 | Cross-site Scripting vulnerability in Alwindoss Akademy A vulnerability was found in alwindoss akademy up to 35caccea888ed63d5489e211c99edff1f62efdba. | 5.4 |
| 2024-09-04 | CVE-2024-8413 | Cross-site Scripting vulnerability in Raspcontrol Project Raspcontrol 1.0 Cross Site Scripting (XSS) vulnerability through the action parameter in index.php. | 6.1 |
| 2024-09-04 | CVE-2024-8318 | Cross-site Scripting vulnerability in Websevendev Attributes for Blocks The Attributes for Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘attributesForBlocks’ parameter in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escaping. | 5.4 |