Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-14 | CVE-2024-29894 | Cross-site Scripting vulnerability in multiple products Cacti provides an operational monitoring and fault management framework. | 4.7 |
| 2024-05-14 | CVE-2024-28277 | Cross-site Scripting vulnerability in Remyandrade School Task Manager 1.0 In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. | 6.1 |
| 2024-05-14 | CVE-2024-28761 | Cross-site Scripting vulnerability in IBM APP Connect Enterprise IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 is vulnerable to HTML injection. | 5.4 |
| 2024-05-14 | CVE-2024-27082 | Cross-site Scripting vulnerability in Cacti Cacti provides an operational monitoring and fault management framework. | 5.4 |
| 2024-05-14 | CVE-2024-22344 | Cross-site Scripting vulnerability in IBM Txseries for Multiplatform 8.2 IBM TXSeries for Multiplatforms 8.2 is vulnerable to HTML injection. | 6.1 |
| 2024-05-14 | CVE-2024-0445 | Cross-site Scripting vulnerability in Posimyth the Plus Addons for Elementor The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's element attributes in all versions up to, and including, 5.4.2 due to insufficient input sanitization and output escaping. | 5.4 |
| 2024-05-08 | CVE-2024-4281 | Cross-site Scripting vulnerability in Ylefebvre Link Library The Link Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'link-library' shortcode in all versions up to, and including, 7.6.11 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-05-03 | CVE-2023-51633 | Cross-site Scripting vulnerability in Centreon web Centreon sysName Cross-Site Scripting Remote Code Execution Vulnerability. | 9.6 |
| 2024-05-02 | CVE-2023-6961 | Cross-site Scripting vulnerability in Joomunited WP Meta SEO The WP Meta SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Referer’ header in all versions up to, and including, 4.5.12 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-05-02 | CVE-2024-2084 | Cross-site Scripting vulnerability in Hasthemes HT Mega The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's lightbox widget in all versions up to, and including, 2.4.6 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |