CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,423 vulnerabilities with CWE-79
CVE-2024-51826 MEDIUM
James Turner Bitcoin Payments <1.4.2 - XSS
CVSS 6.5
CVE-2024-51825 MEDIUM
Alert Me! <= 0.4.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51824 MEDIUM
Advanced Video Player with Analytics <= 1 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51823 MEDIUM
Sherwin Calims Add Ribbon Shortcode <1.0.1 - XSS
CVSS 6.5
CVE-2024-51822 MEDIUM
Keon Themes Creative Blocks <1.0.1 - XSS
CVSS 6.5
CVE-2024-51821 MEDIUM
wordpresteem WE - Client Logo Carousel <1.4 - XSS
CVSS 6.5
CVE-2024-51819 MEDIUM
Tigris Flexplatform <= 1.0.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51816 MEDIUM
Banner System <= 1.0.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51814 MEDIUM
<= 1.2.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51813 MEDIUM
Anant Addons for Elementor <1.0.5 - XSS
CVSS 6.5
CVE-2024-51812 MEDIUM
Wasim Pro Addons For Elementor <1.5.0 - XSS
CVSS 6.5
CVE-2024-51811 MEDIUM
Hussam Hussien Popup Image <1.0.1 - XSS
CVSS 6.5
CVE-2024-51810 MEDIUM
Lewe Bootstrap Visuals <2.2.2 - XSS
CVSS 6.5
CVE-2024-51809 MEDIUM
George Rood Keymaster Chord Notation Free - XSS
CVSS 6.5
CVE-2024-51808 MEDIUM
Pat O'Brien codeSnips <= 1.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51807 MEDIUM
AgendaPress < 1.0.8 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51806 MEDIUM
Shingo Suzumura at Fitness Website Formula Awesome Fitness Testimon...
CVSS 6.5
CVE-2024-51805 MEDIUM
yPHPlista <= 1.1.1 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51804 MEDIUM
Moka Get Posts Shortcode <1.0 - XSS
CVSS 6.5
CVE-2024-51803 MEDIUM
Magnetic Creative Inline Click To Tweet <1.0.0 - XSS
CVSS 6.5
CVE-2024-51802 MEDIUM
Bread & Butter <= 7.4.857 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51801 MEDIUM
Jake Brown Brand my Footer <1.1 - XSS
CVSS 6.5
CVE-2024-51799 MEDIUM
Bg Patriarchia BU <= 2.2.3 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51798 MEDIUM
Surbma | Font Awesome <= 3.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51797 MEDIUM
Md. Shiddikur Rahman Ultimate Accordion - XSS
CVSS 6.5
Details
Vulnerabilities 45,423
Exploit Likelihood High