Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2019-08-28 CVE-2015-9378 Cross-site Scripting vulnerability in Ithemes Builder Theme Market
iThemes Builder Theme Market before 5.1.27 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9377 Cross-site Scripting vulnerability in Ithemes Builder Theme Depot
iThemes Builder Theme Depot before 5.0.30 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9376 Cross-site Scripting vulnerability in Ithemes Mobile
iThemes Mobile before 1.2.8 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9375 Cross-site Scripting vulnerability in Ithemes Table Rate Shipping
Table Rate Shipping Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9374 Cross-site Scripting vulnerability in Ithemes Stripe
Stripe Add-on for iThemes Exchange before 1.2.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9373 Cross-site Scripting vulnerability in Webdevstudios Ithemes Paypal PRO
PayPal Pro Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). 		4.3
4.3
2019-08-28 CVE-2015-9372 Cross-site Scripting vulnerability in Ithemes Membership
Membership Add-on for iThemes Exchange before 1.3.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9371 Cross-site Scripting vulnerability in Ithemes Manual Purchases
Manual Purchases Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9370 Cross-site Scripting vulnerability in Ithemes Invoices
Invoices Add-on for iThemes Exchange before 1.4.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3
2019-08-28 CVE-2015-9369 Cross-site Scripting vulnerability in Ithemes Easy US Sales Taxes
Easy US Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
network
ithemes CWE-79
4.3
4.3