Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-21 | CVE-2014-10380 | Cross-site Scripting vulnerability in Cozmoslabs Profile Builder The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms. | 4.3 |
| 2019-08-21 | CVE-2012-6715 | Cross-site Scripting vulnerability in Formbuilder Project Formbuilder The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header. | 4.3 |
| 2019-08-21 | CVE-2019-15112 | Cross-site Scripting vulnerability in Wp-Slimstat Slimstat Analytics The wp-slimstat plugin before 4.8.1 for WordPress has XSS. | 6.1 |
| 2019-08-21 | CVE-2019-15110 | Cross-site Scripting vulnerability in WP Front END Profile Project WP Front END Profile 0.1/0.2/0.2.1 The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS. | 4.3 |
| 2019-08-21 | CVE-2017-18565 | Cross-site Scripting vulnerability in Bestwebsoft Updater The updater plugin before 1.35 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-21 | CVE-2017-18560 | Cross-site Scripting vulnerability in Content Audit Project Content Audit The content-audit plugin before 1.9.2 for WordPress has XSS. | 4.3 |
| 2019-08-21 | CVE-2017-18558 | Cross-site Scripting vulnerability in Bestwebsoft Testimonials The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-21 | CVE-2017-18557 | Cross-site Scripting vulnerability in Bestwebsoft Google Maps The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-21 | CVE-2017-18556 | Cross-site Scripting vulnerability in Bestwebsoft Google Analytics The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues. | 4.3 |
| 2019-08-21 | CVE-2017-18555 | Cross-site Scripting vulnerability in Mediaburst Booking Calendar The booking-sms plugin before 1.1.0 for WordPress has XSS. | 4.3 |