Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-51076 | Cross-site Scripting vulnerability in PHPgurukul Online DJ Booking Management System 1.0 A Reflected Cross Site Scripting (XSS) vulnerability was found in /odms/admin/booking-search.php in PHPGurukul Online DJ Booking Management System 1.0, which allows remote attackers to execute arbitrary code via the "searchdata" parameter. | 6.1 |
| 2024-10-29 | CVE-2024-9505 | Cross-site Scripting vulnerability in Fastlinemedia Beaver Builder The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Button widget in all versions up to, and including, 2.8.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. | 5.4 |
| 2024-10-29 | CVE-2024-10461 | Cross-site Scripting vulnerability in Mozilla Thunderbird In multipart/x-mixed-replace responses, `Content-Disposition: attachment` in the response header was not respected and did not force a download, which could allow XSS attacks. | 6.1 |
| 2024-10-29 | CVE-2024-49635 | Cross-site Scripting vulnerability in Manzurulhaque Banner Slider Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Manzurul Haque Banner Slider allows Reflected XSS.This issue affects Banner Slider: from n/a through 2.1. | 6.1 |
| 2024-10-29 | CVE-2024-49636 | Cross-site Scripting vulnerability in Prashantmavinkurve Agile Video Player Lite Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Prashant Mavinkurve Agile Video Player Lite allows Reflected XSS.This issue affects Agile Video Player Lite: from n/a through 1.0. | 6.1 |
| 2024-10-29 | CVE-2024-49637 | Cross-site Scripting vulnerability in Foxskav BET WC 2018 Russia Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Foxskav Bet WC 2018 Russia allows Reflected XSS.This issue affects Bet WC 2018 Russia: from n/a through 2.1. | 6.1 |
| 2024-10-29 | CVE-2024-49638 | Cross-site Scripting vulnerability in Aliazlan Risk Warning BAR Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ali Azlan Risk Warning Bar allows Reflected XSS.This issue affects Risk Warning Bar: from n/a through 1.0. | 6.1 |
| 2024-10-29 | CVE-2024-49639 | Cross-site Scripting vulnerability in Edwardstoever Monitor.Chat Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Edward Stoever Monitor.Chat allows Reflected XSS.This issue affects Monitor.Chat: from n/a through 1.1.1. | 6.1 |
| 2024-10-29 | CVE-2024-49640 | Cross-site Scripting vulnerability in Amadercodelab ACL Floating Cart for Woocommerce Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AmaderCode Lab ACL Floating Cart for WooCommerce allows Reflected XSS.This issue affects ACL Floating Cart for WooCommerce: from n/a through 0.9. | 6.1 |
| 2024-10-29 | CVE-2024-49641 | Cross-site Scripting vulnerability in Tidaweb Tida URL Screenshot Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Tidaweb Tida URL Screenshot allows Reflected XSS.This issue affects Tida URL Screenshot: from n/a through 1.0. | 6.1 |