CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,423 vulnerabilities with CWE-79
CVE-2024-51854 MEDIUM
Hola Networks Hola Free Video Player <1.3.9 - XSS
CVSS 6.5
CVE-2024-51853 MEDIUM
Alberuni Azad Faltu Testimonial Rotator <1.0.0 - XSS
CVSS 6.5
CVE-2024-51852 MEDIUM
Dynamic Post Grid Elementor Addon <1.0.7 - XSS
CVSS 6.5
CVE-2024-51851 MEDIUM
Saleh Attari Best Bootstrap Widgets For Elementor - XSS
CVSS 6.5
CVE-2024-51850 MEDIUM
bchristopeit WoW Guild Armory Roster <0.5.5 - XSS
CVSS 6.5
CVE-2024-51849 MEDIUM
Marco Piarulli My Restaurant Menu <0.2.0 - XSS
CVSS 6.5
CVE-2024-51848 MEDIUM
Digital Zoom Studio Parallaxer - XSS
CVSS 6.5
CVE-2024-51847 MEDIUM
WP PagSeguro Payments <= 1.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51846 MEDIUM
Community Yard Sale <= 1.1.11 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51844 MEDIUM
Kiran Patil Location Click Map <1.0 - XSS
CVSS 6.5
CVE-2024-51842 MEDIUM
Sazzad Hu Image Carousel Shortcode <1.2 - XSS
CVSS 6.5
CVE-2024-51841 MEDIUM
ThemeNcode File Select Control For Elementor <1.3 - XSS
CVSS 6.5
CVE-2024-51840 MEDIUM
Rezaul haque Wd-image-magnifier-xoss - XSS
CVSS 6.5
CVE-2024-51839 MEDIUM
Meini Utech Spinning Earth <1.2 - XSS
CVSS 6.5
CVE-2024-51838 MEDIUM
Pull This <= 1.1 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51836 MEDIUM
Wezido <= 1.2 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51835 MEDIUM
OpenCart Product Display <1.0 - XSS
CVSS 6.5
CVE-2024-51834 MEDIUM
Luzuk Slider <= 0.1.5 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51833 MEDIUM
Noman Akhtar Easy Social Sharebar <1.0.0 - XSS
CVSS 6.5
CVE-2024-51832 MEDIUM
Plenigo <= 1.12.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51831 MEDIUM
Persian Nested Show/Hide Text <1.5 - XSS
CVSS 6.5
CVE-2024-51830 MEDIUM
Fazilatunnesa News Ticker <1.0 - XSS
CVSS 6.5
CVE-2024-51829 MEDIUM
Figoli Quinn & Associates Mobile Kiosk - XSS
CVSS 6.5
CVE-2024-51828 MEDIUM
Beacon For Help Scout <= 1.3.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51827 MEDIUM
Boombox Shortcode <= 1.0.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
Details
Vulnerabilities 45,423
Exploit Likelihood High