Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-21 CVE-2024-37538 Cross-site Scripting vulnerability in Bibleserver Link to Bible
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Thomas Kuhlmann Link To Bible allows Stored XSS.This issue affects Link To Bible: from n/a through 2.5.9.
network
low complexity
bibleserver CWE-79
5.4
5.4
2024-07-21 CVE-2024-37545 Cross-site Scripting vulnerability in Celloexpressions Floating Social Media Links
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Nick Halsey Floating Social Media Links allows Stored XSS.This issue affects Floating Social Media Links: from n/a through 1.5.2.
network
low complexity
celloexpressions CWE-79
5.4
5.4
2024-07-21 CVE-2024-37548 Cross-site Scripting vulnerability in Mekshq Meks Easy ADS Widget
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Meks Meks Easy Ads Widget allows Stored XSS.This issue affects Meks Easy Ads Widget: from n/a through 2.0.8.
network
low complexity
mekshq CWE-79
5.4
5.4
2024-07-21 CVE-2024-37549 Cross-site Scripting vulnerability in Pdfcrowd Save AS PDF
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Stored XSS.This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 4.0.0.
network
low complexity
pdfcrowd CWE-79
4.8
4.8
2024-07-21 CVE-2024-37550 Cross-site Scripting vulnerability in Envato Template KIT - Export
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Envato Template Kit – Export allows Stored XSS.This issue affects Template Kit – Export: from n/a through 1.0.22.
network
low complexity
envato CWE-79
4.8
4.8
2024-07-21 CVE-2024-37551 Cross-site Scripting vulnerability in Perials Simple Social Share
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Perials Simple Social Share allows Stored XSS.This issue affects Simple Social Share: from n/a through 3.0.
network
low complexity
perials CWE-79
5.4
5.4
2024-07-21 CVE-2024-37552 Cross-site Scripting vulnerability in Inisev Social Media Share Buttons & Social Sharing Icons
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Inisev Social Media & Share Icons allows Stored XSS.This issue affects Social Media & Share Icons: from n/a through 2.9.1.
network
low complexity
inisev CWE-79
5.4
5.4
2024-07-21 CVE-2024-37556 Cross-site Scripting vulnerability in Seedprod Wordpress Notification BAR
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SeedProd WordPress Notification Bar allows Stored XSS.This issue affects WordPress Notification Bar: from n/a through 1.3.10.
network
low complexity
seedprod CWE-79
4.8
4.8
2024-07-21 CVE-2024-37557 Cross-site Scripting vulnerability in Sohamsolution WP Cookie LAW Info
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Soham Web Solution WP Cookie Law Info allows Stored XSS.This issue affects WP Cookie Law Info: from n/a through 1.1.
network
low complexity
sohamsolution CWE-79
4.8
4.8
2024-07-21 CVE-2024-37558 Cross-site Scripting vulnerability in Nihal Wpfavicon
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Nazmul Hossain Nihal WPFavicon allows Stored XSS.This issue affects WPFavicon: from n/a through 2.1.1.
network
low complexity
nihal CWE-79
4.8
4.8