Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-07 | CVE-2024-12592 | The Sellsy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testSellsy' shortcode in all versions up to, and including, 2.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. | 6.4 |
| 2025-01-06 | CVE-2024-31913 | Cross-site Scripting vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored cross-site scripting. | 5.4 |
| 2025-01-05 | CVE-2024-13142 | Cross-site Scripting vulnerability in Zerowdd Studentmanager 1.0 A vulnerability was found in ZeroWdd studentmanager 1.0. | 4.8 |
| 2025-01-05 | CVE-2025-0228 | Cross-site Scripting vulnerability in Code-Projects Local Storage Todo APP 1.0 A vulnerability has been found in code-projects Local Storage Todo App 1.0 and classified as problematic. | 4.8 |
| 2025-01-05 | CVE-2024-13141 | Cross-site Scripting vulnerability in Osuuu Lightpicture 1.2.0/1.2.1/1.2.2 A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. | 5.4 |
| 2025-01-05 | CVE-2024-13140 | Cross-site Scripting vulnerability in Emlog A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.3. | 5.4 |
| 2025-01-05 | CVE-2024-13137 | Cross-site Scripting vulnerability in Wangl1989 Mysiteforme 1.0 A vulnerability was found in wangl1989 mysiteforme 1.0. | 5.4 |
| 2025-01-05 | CVE-2024-13135 | Cross-site Scripting vulnerability in Emlog 2.4.3 A vulnerability has been found in Emlog Pro 2.4.3 and classified as problematic. | 5.4 |
| 2025-01-05 | CVE-2024-13132 | Cross-site Scripting vulnerability in Emlog A vulnerability classified as problematic was found in Emlog Pro up to 2.4.3. | 5.4 |
| 2025-01-04 | CVE-2024-12475 | Cross-site Scripting vulnerability in Wpexperts WP Multi Store Locator 2.4 The WP Multi Store Locator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. | 5.4 |