Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-21 | CVE-2024-37449 | Cross-site Scripting vulnerability in Themepunch Slider Revolution Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a through 6.7.13. | 4.8 |
| 2024-07-21 | CVE-2024-37457 | Cross-site Scripting vulnerability in Dotcamp Ultimate Blocks Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ultimate Blocks Ultimate Blocks – Gutenberg Blocks Plugin allows Stored XSS.This issue affects Ultimate Blocks – Gutenberg Blocks Plugin: from n/a through 3.1.9. | 5.4 |
| 2024-07-21 | CVE-2024-37459 | Cross-site Scripting vulnerability in Payplus Payment Gateway Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PayPlus LTD PayPlus Payment Gateway allows Reflected XSS.This issue affects PayPlus Payment Gateway: from n/a through 6.6.8. | 6.1 |
| 2024-07-21 | CVE-2024-37460 | Cross-site Scripting vulnerability in Supersaas Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SuperSaaS SuperSaaS – online appointment scheduling allows Stored XSS.This issue affects SuperSaaS – online appointment scheduling: from n/a through 2.1.9. | 5.4 |
| 2024-07-21 | CVE-2024-37461 | Cross-site Scripting vulnerability in Northernbeacheswebsites Ideapush Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65. | 6.1 |
| 2024-07-21 | CVE-2024-37465 | Cross-site Scripting vulnerability in Aipower Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Senol Sahin GPT3 AI Content Writer allows Stored XSS.This issue affects GPT3 AI Content Writer: from n/a through 1.8.66. | 5.4 |
| 2024-07-21 | CVE-2024-37466 | Cross-site Scripting vulnerability in Kraftplugins Mega Elements Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kraftplugins Mega Elements.This issue affects Mega Elements: from n/a through 1.2.2. | 5.4 |
| 2024-07-21 | CVE-2024-37480 | Cross-site Scripting vulnerability in Apollo13Themes Apollo13 Framework Extensions Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions apollo13-framework-extensions allows Stored XSS.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.3. | 5.4 |
| 2024-07-21 | CVE-2024-37485 | Cross-site Scripting vulnerability in Usestrict Bbpress Notify Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Vinny Alves (UseStrict Consulting) bbPress Notify allows Reflected XSS.This issue affects bbPress Notify: from n/a through 2.18.3. | 6.1 |
| 2024-07-21 | CVE-2024-38781 | Cross-site Scripting vulnerability in Artistscope Copysafe web Protection Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ArtistScope CopySafe Web Protection allows Reflected XSS.This issue affects CopySafe Web Protection: from n/a through 3.15. | 6.1 |