CWE-79
High likelihoodImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
45,211 vulnerabilities with CWE-79
CVE-2025-32190
MEDIUM
Musician's Pack for Elementor <1.8.4 - XSS
CVSS 6.5
CVE-2025-32189
MEDIUM
Best WP Developer BWD Elementor Addons <4.3.20 - XSS
CVSS 6.5
CVE-2025-32188
MEDIUM
ILLID Advanced Woo Labels <2.14 - XSS
CVSS 6.5
CVE-2025-32187
MEDIUM
Administrator Z <=2025.03.04 - DOM-Based XSS
CVSS 6.5
CVE-2025-32186
MEDIUM
Turbo Addons for Elementor <1.7.1 - XSS
CVSS 6.5
CVE-2025-32185
MEDIUM
Colibri Page Builder <= 1.0.329 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32184
MEDIUM
bdthemes Ultimate Store Kit Elementor Addons <2.4.0 - XSS
CVSS 6.5
CVE-2025-32183
MEDIUM
Galaxy Weblinks Video Playlist For YouTube <6.6 - XSS
CVSS 6.5
CVE-2025-32182
MEDIUM
Spider Elements - Addons for Elementor <1.6.2 - XSS
CVSS 6.5
CVE-2025-32181
MEDIUM
Fast Simon Search, Filters & Merchandising for WooCommerce <= 3.0.58 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32179
MEDIUM
Maps for WP <= 1.2.4 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32177
MEDIUM
pgn4web Embed Chessboard <3.07.00 - XSS
CVSS 6.5
CVE-2025-32176
MEDIUM
GalleryCreator Gallery Blocks with Lightbox <3.2.5 - XSS
CVSS 6.5
CVE-2025-32175
MEDIUM
Vektor,Inc. VK Filter Search <2.14.1.0 - XSS
CVSS 6.5
CVE-2025-32174
MEDIUM
Tockify Events Calendar <2.2.13 - XSS
CVSS 6.5
CVE-2025-32173
MEDIUM
B Blocks - The ultimate block collection <= 2.0.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32172
MEDIUM
YaMaps for WordPress <= 0.6.40 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32171
MEDIUM
Table Block by Tableberg <0.6.0 - XSS
CVSS 6.5
CVE-2025-32170
MEDIUM
Stylemix Motors <= 1.4.71 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32169
MEDIUM
Suresh Prasad Showeblogin Social <7.0. - XSS
CVSS 6.5
CVE-2025-32168
MEDIUM
Gutenify <= 1.5.7 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32167
MEDIUM
SurveyJS <= 1.12.20 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32166
MEDIUM
Emma for WordPress <= 1.3.3 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2025-32165
MEDIUM
fromdoppler Doppler Forms <2.4.5 - XSS
CVSS 6.5
CVE-2025-32163
MEDIUM
Xpro Elementor Addons <= 1.4.10 - Stored Cross-Site Scripting
CVSS 6.5
Details
Vulnerabilities
45,211
Exploit Likelihood
High