Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-15 | CVE-2024-7064 | Cross-site Scripting vulnerability in Wpmet Elementskit The ElementsKit Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions up to, and including, 3.6.5 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-08-15 | CVE-2024-7814 | Cross-site Scripting vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 A vulnerability, which was classified as problematic, was found in CodeAstro Online Railway Reservation System 1.0. | 4.8 |
| 2024-08-15 | CVE-2024-7815 | Cross-site Scripting vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. | 4.8 |
| 2024-08-15 | CVE-2024-6533 | Cross-site Scripting vulnerability in Monospace Directus 10.13.0 Directus v10.13.0 allows an authenticated external attacker to execute arbitrary JavaScript on the client. | 5.4 |
| 2024-08-15 | CVE-2024-7812 | Cross-site Scripting vulnerability in Mayurik Best House Rental Management System 1.0 A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. | 5.4 |
| 2024-08-14 | CVE-2024-7793 | Cross-site Scripting vulnerability in Rems Task Progress Tracker 1.0 A vulnerability was found in SourceCodester Task Progress Tracker 1.0. | 5.4 |
| 2024-08-14 | CVE-2024-7790 | Cross-site Scripting vulnerability in Stitionai Devika A stored cross site scripting vulnerabilities exists in DevikaAI from commit 6acce21fb08c3d1123ef05df6a33912bf0ee77c2 onwards via improperly decoded user input. | 5.4 |
| 2024-08-14 | CVE-2024-39400 | Cross-site Scripting vulnerability in Adobe Commerce Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. | 8.1 |
| 2024-08-14 | CVE-2024-39403 | Cross-site Scripting vulnerability in Adobe Commerce Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. | 7.6 |
| 2024-08-14 | CVE-2024-7752 | Cross-site Scripting vulnerability in Oretnom23 Clinic'S Patient Management System 1.0 A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. | 6.1 |