CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

44,968 vulnerabilities with CWE-79
CVE-2025-69316 HIGH
RealMag777 TableOn <= 1.0.4.2 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-69102 HIGH
Boopathi Rajan WP Test Email <=1.1.7 - XSS
CVSS 7.1
CVE-2025-69098 HIGH
Hide My WP <= 6.2.12 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-69056 HIGH
e-plugins Hotel Listing <=1.4.0 - XSS
CVSS 7.1
CVE-2025-69054 HIGH
Super Logos Showcase <= 2.8 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-69053 HIGH
LambertGroup Universal Video Player <3.8.4 - XSS
CVSS 7.1
CVE-2025-69051 HIGH
CridioStudio ListingPro Reviews <1.8 - XSS
CVSS 7.1
CVE-2025-69048 HIGH
LambertGroup Universal Video Player <=3.8.4 - XSS
CVSS 7.1
CVE-2025-69003 HIGH
QantumThemes KenthaRadio <2.2.0 - XSS
CVSS 7.1
CVE-2025-68906 HIGH
Jegtheme JNews - Video <11.0.2 - XSS
CVSS 7.1
CVE-2025-68904 HIGH
JNews - Frontend Submit <11.0.0 - XSS
CVSS 7.1
CVE-2025-68900 MEDIUM
Enfold <= 7.1.3 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2025-68898 MEDIUM
cjjparadoxmax Synergy Project Manager <=1.5 - XSS
CVSS 5.8
CVE-2025-68894 HIGH
ShoutOut <= 4.0.2 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-68884 HIGH
Arevico WP Simple Redirect <2 - XSS
CVSS 7.1
CVE-2025-68883 HIGH
bidorbuy Store Integrator <2.12.0 - XSS
CVSS 7.1
CVE-2025-68871 HIGH
Dooodl <= 2.3.0 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-68866 HIGH
Dinatur <= 1.18 - Stored Cross-Site Scripting
CVSS 7.1
CVE-2025-68864 HIGH
Infility Global <= 2.15.11 - Stored Cross-Site Scripting
CVSS 7.1
CVE-2025-68859 HIGH
Syntax Highlighter Compress <= 3.0.83.3 - XSS
CVSS 7.1
CVE-2025-68858 HIGH
wpCAS <= 1.07 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2025-68849 HIGH
Frank Corso Quote Master <=7.1.1 - XSS
CVSS 7.1
CVE-2025-68839 HIGH
Remi Corson Easy Theme Options <=1.0 - XSS
CVSS 7.1
CVE-2025-68838 HIGH
MemberPress Discord Addon <1.1.4 - XSS
CVSS 7.1
CVE-2025-68835 HIGH
Ravpage <= 2.33 - Reflected Cross-Site Scripting
CVSS 7.1
Details
Vulnerabilities 44,968
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits