CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,417 vulnerabilities with CWE-79
CVE-2024-51928 MEDIUM
Jakir Hasan Blocks Post Grid <1.0.3 - XSS
CVSS 6.5
CVE-2024-51927 MEDIUM
Codember Rig Elements For Elementor <1.0 - XSS
CVSS 6.5
CVE-2024-51926 MEDIUM
GreenCon <= 1.0.1 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51925 MEDIUM
Sazzad Hu Testimonial Slider Shortcode <1.1.9 - XSS
CVSS 6.5
CVE-2024-51924 MEDIUM
Alexandre Magno WP Agenda <2.0 - XSS
CVSS 6.5
CVE-2024-51923 MEDIUM
Websand Subscription Form <1.0.3 - XSS
CVSS 6.5
CVE-2024-51922 MEDIUM
VP Sitemap <= 1.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51921 MEDIUM
midori scrollup <= 1.1 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51920 MEDIUM
JDev Map Store Locator <1.2.1 - XSS
CVSS 6.5
CVE-2024-51918 MEDIUM
Freshlight Lab Pay With Stripe <1.2.1 - XSS
CVSS 6.5
CVE-2024-51917 MEDIUM
Multiple Votes in one page <= 1.0.4 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51916 MEDIUM
Creative Brahma Multifox Plus - XSS
CVSS 6.5
CVE-2024-51914 MEDIUM
Gopi Ramasamy drop in image slideshow gallery <12.0 - XSS
CVSS 6.5
CVE-2024-51913 MEDIUM
Mapme <= 1.3.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51912 MEDIUM
Lilaea Media IntelliWidget <2.2.7 - XSS
CVSS 6.5
CVE-2024-51911 MEDIUM
Featured product by category name <= 1.1 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51910 MEDIUM
Mauro Cordioli Assist24 Help Desk - XSS
CVSS 6.5
CVE-2024-51909 MEDIUM
Monarkie Digital Content Solutions audioCase <1.2.1 - XSS
CVSS 6.5
CVE-2024-51908 MEDIUM
Gonzalo Geraldo Adventure Bucket List <1.0.9 - XSS
CVSS 6.5
CVE-2024-51907 MEDIUM
codemenschen WP Virtual Room Configurator <1.0.0 - XSS
CVSS 6.5
CVE-2024-51906 MEDIUM
RSV 360 View <= 1.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51905 MEDIUM
RSV PDF Preview <= 1.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51904 MEDIUM
Embed documents shortcode <= 1.5 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51903 MEDIUM
imFORZA WP Listings Pro <3.0.14 - XSS
CVSS 6.5
CVE-2024-51902 MEDIUM
Oliver Schaal TinyCode <1.2.1 - XSS
CVSS 6.5
Details
Vulnerabilities 45,417
Exploit Likelihood High