Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2024-08-26 CVE-2024-44795 Cross-site Scripting vulnerability in Gazelle Project Gazelle
A cross-site scripting (XSS) vulnerability in the component /login/disabled.php of Gazelle commit 63b3370 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter.
network
low complexity
gazelle-project CWE-79
6.1
6.1
2024-08-26 CVE-2024-44796 Cross-site Scripting vulnerability in Xiebruce Picuploader
A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error_description parameter.
network
low complexity
xiebruce CWE-79
6.1
6.1
2024-08-26 CVE-2024-44797 Cross-site Scripting vulnerability in Gazelle Project Gazelle
A cross-site scripting (XSS) vulnerability in the component /managers/enable_requests.php of Gazelle commit 63b3370 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the view parameter.
network
low complexity
gazelle-project CWE-79
6.1
6.1
2024-08-26 CVE-2024-42790 Cross-site Scripting vulnerability in Lopalopa Music Management System 1.0
A Reflected Cross Site Scripting (XSS) vulnerability was found in "/music/index.php?page=test" in Kashipara Music Management System v1.0.
network
low complexity
lopalopa CWE-79
5.4
5.4
2024-08-26 CVE-2024-8174 Cross-site Scripting vulnerability in Blood Bank System Project Blood Bank System 1.0
A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic.
network
low complexity
blood-bank-system-project CWE-79
6.1
6.1
2024-08-26 CVE-2024-43967 Cross-site Scripting vulnerability in Starkdigital WP Testimonial Widget
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Stark Digital WP Testimonial Widget allows Stored XSS.This issue affects WP Testimonial Widget: from n/a through 3.1.
network
low complexity
starkdigital CWE-79
4.8
4.8
2024-08-26 CVE-2024-8172 Cross-site Scripting vulnerability in Rems QR Code Attendance System 1.0
A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Attendance System 1.0.
network
low complexity
rems CWE-79
6.1
6.1
2024-08-25 CVE-2024-8152 Cross-site Scripting vulnerability in Rems QR Code Bookmark System 1.0
A vulnerability was found in SourceCodester QR Code Bookmark System 1.0.
network
low complexity
rems CWE-79
5.4
5.4
2024-08-25 CVE-2024-8153 Cross-site Scripting vulnerability in Rems QR Code Bookmark System 1.0
A vulnerability was found in SourceCodester QR Code Bookmark System 1.0.
network
low complexity
rems CWE-79
5.4
5.4
2024-08-25 CVE-2024-8154 Cross-site Scripting vulnerability in Rems QR Code Bookmark System 1.0
A vulnerability classified as problematic has been found in SourceCodester QR Code Bookmark System 1.0.
network
low complexity
rems CWE-79
5.4
5.4