Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-21 | CVE-2024-37487 | Cross-site Scripting vulnerability in Wpdirectorykit WP Directory KIT Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wpdirectorykit.Com WP Directory Kit allows Reflected XSS.This issue affects WP Directory Kit: from n/a through 1.3.5. | 6.1 |
| 2024-07-21 | CVE-2024-37488 | Cross-site Scripting vulnerability in Helloasso Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HelloAsso allows Stored XSS.This issue affects HelloAsso: from n/a through 1.1.9. | 5.4 |
| 2024-07-21 | CVE-2024-37489 | Cross-site Scripting vulnerability in Oceanwp Ocean Extra Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OceanWP Ocean Extra allows Stored XSS.This issue affects Ocean Extra: from n/a through 2.2.9. | 5.4 |
| 2024-07-21 | CVE-2024-37495 | Cross-site Scripting vulnerability in Mediavine Create Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mediavine Create by Mediavine allows Stored XSS.This issue affects Create by Mediavine: from n/a through 1.9.7. | 5.4 |
| 2024-07-21 | CVE-2024-37509 | Cross-site Scripting vulnerability in Makecommerce for Woocommerce Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Maksekeskus AS MakeCommerce for WooCommerce allows Reflected XSS.This issue affects MakeCommerce for WooCommerce: from n/a through 3.5.1. | 6.1 |
| 2024-07-21 | CVE-2024-37514 | Cross-site Scripting vulnerability in Artistscope Copysafe web Protection Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ArtistScope CopySafe Web Protection allows Stored XSS.This issue affects CopySafe Web Protection: from n/a through 3.14. | 5.4 |
| 2024-07-21 | CVE-2024-37519 | Cross-site Scripting vulnerability in Leap13 Premium Blocks for Gutenburg Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Leap13 Premium Blocks – Gutenberg Blocks for WordPress allows Stored XSS.This issue affects Premium Blocks – Gutenberg Blocks for WordPress: from n/a through 2.1.27. | 5.4 |
| 2024-07-21 | CVE-2024-37521 | Cross-site Scripting vulnerability in ZWW Zbench Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in zwwooooo zBench allows Stored XSS.This issue affects zBench: from n/a through 1.4.2. | 5.4 |
| 2024-07-21 | CVE-2024-37522 | Cross-site Scripting vulnerability in Dcurasi CC & BCC for Woocommerce Order Emails Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dario Curasì CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1. | 4.8 |
| 2024-07-21 | CVE-2024-38436 | Cross-site Scripting vulnerability in Commugen SOX 365 Commugen SOX 365 – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 6.1 |