Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

DATE CVE VULNERABILITY TITLE RISK
2024-09-18 CVE-2024-44001 Cross-site Scripting vulnerability in Royal-Elementor-Addons Royal Elementor Addons
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Royal Royal Elementor Addons allows Stored XSS.This issue affects Royal Elementor Addons: from n/a through 1.3.982.
network
low complexity
royal-elementor-addons CWE-79
5.4
5.4
2024-09-18 CVE-2024-44002 Cross-site Scripting vulnerability in Pickplugins Team Showcase
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PickPlugins Team Showcase allows Reflected XSS.This issue affects Team Showcase: from n/a through 1.22.25.
network
low complexity
pickplugins CWE-79
6.1
6.1
2024-09-18 CVE-2024-44003 Cross-site Scripting vulnerability in Spicethemes Spice Starter Sites
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in spicethemes Spice Starter Sites allows Reflected XSS.This issue affects Spice Starter Sites: from n/a through 1.2.5.
network
low complexity
spicethemes CWE-79
6.1
6.1
2024-09-18 CVE-2024-44005 Cross-site Scripting vulnerability in Greenshiftwp Greenshift - Animation and Page Builder Blocks
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Stored XSS.This issue affects Greenshift – animation and page builder blocks: from n/a through 9.3.7.
network
low complexity
greenshiftwp CWE-79
5.4
5.4
2024-09-17 CVE-2024-43977 Cross-site Scripting vulnerability in Posimyth the Plus Addons for Elementor
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in POSIMYTH The Plus Addons for Elementor Page Builder Lite allows Stored XSS.This issue affects The Plus Addons for Elementor Page Builder Lite: from n/a through 5.6.2.
network
low complexity
posimyth CWE-79
5.4
5.4
2024-09-17 CVE-2024-43985 Cross-site Scripting vulnerability in Mage-People BUS Ticket Booking With Seat Reservation
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MagePeople Team Bus Ticket Booking with Seat Reservation allows Stored XSS.This issue affects Bus Ticket Booking with Seat Reservation: from n/a through 5.3.5.
network
low complexity
mage-people CWE-79
4.8
4.8
2024-09-17 CVE-2024-44007 Cross-site Scripting vulnerability in Sktthemes SKT Templates
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SKT Themes SKT Templates – Elementor & Gutenberg templates allows Reflected XSS.This issue affects SKT Templates – Elementor & Gutenberg templates: from n/a through 6.14.
network
low complexity
sktthemes CWE-79
6.1
6.1
2024-09-17 CVE-2024-44008 Cross-site Scripting vulnerability in Cyberhobo GEO Mashup
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dylan Kuhn Geo Mashup allows Stored XSS.This issue affects Geo Mashup: from n/a through 1.13.12.
network
low complexity
cyberhobo CWE-79
5.4
5.4
2024-09-17 CVE-2024-44009 Cross-site Scripting vulnerability in Wclovers Wcfm Marketplace
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WC Lovers WCFM Marketplace allows Reflected XSS.This issue affects WCFM Marketplace: from n/a through 3.6.10.
network
low complexity
wclovers CWE-79
6.1
6.1
2024-09-17 CVE-2024-44047 Cross-site Scripting vulnerability in Idxbroker Impress for IDX Broker
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IDX Broker IMPress for IDX Broker allows Stored XSS.This issue affects IMPress for IDX Broker: from n/a through 3.2.2.
network
low complexity
idxbroker CWE-79
5.4
5.4