Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-49670 | Cross-site Scripting vulnerability in Samglover Client Power Tools Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sam Glover Client Power Tools Portal allows Reflected XSS.This issue affects Client Power Tools Portal: from n/a through 1.8.6. | 6.1 |
| 2024-10-29 | CVE-2024-49673 | Cross-site Scripting vulnerability in Latex2Html Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Van Abel LaTeX2HTML allows Reflected XSS.This issue affects LaTeX2HTML: from n/a through 2.5.4. | 6.1 |
| 2024-10-29 | CVE-2024-49679 | Cross-site Scripting vulnerability in Wpkoi Templates for Elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPKoi WPKoi Templates for Elementor allows Stored XSS.This issue affects WPKoi Templates for Elementor: from n/a through 3.1.0. | 5.4 |
| 2024-10-29 | CVE-2024-49692 | Cross-site Scripting vulnerability in Affiliatexblocks Affiliatex Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AffiliateX allows Stored XSS.This issue affects AffiliateX: from n/a through 1.2.9. | 5.4 |
| 2024-10-29 | CVE-2024-50407 | Cross-site Scripting vulnerability in Kibokolabs Namaste! LMS Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Reflected XSS.This issue affects Namaste! LMS: from n/a through 2.6.2. | 6.1 |
| 2024-10-29 | CVE-2024-50409 | Cross-site Scripting vulnerability in Kibokolabs Namaste! LMS Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a through 2.6.2. | 5.4 |
| 2024-10-29 | CVE-2024-50410 | Cross-site Scripting vulnerability in Kibokolabs Namaste! LMS Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a through 2.6.4. | 5.4 |
| 2024-10-29 | CVE-2024-9376 | The Kata Plus – Addons for Elementor – Widgets, Extensions and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.7 due to insufficient input sanitization and output escaping. | 6.4 |
| 2024-10-29 | CVE-2024-10048 | The Post Status Notifier Lite and Premium plugins for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘page’ parameter in all versions up to, and including, 1.11.6 due to insufficient input sanitization and output escaping. | 6.1 |
| 2024-10-29 | CVE-2024-45477 | Cross-site Scripting vulnerability in Apache Nifi Apache NiFi 1.10.0 through 1.27.0 and 2.0.0-M1 through 2.0.0-M3 support a description field for Parameters in a Parameter Context configuration that is vulnerable to cross-site scripting. | 4.6 |