CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,430 vulnerabilities with CWE-79
CVE-2024-51581 MEDIUM
NicheAddons Restaurant & Cafe Addon <1.5.6 - XSS
CVSS 6.5
CVE-2024-51580 MEDIUM
Clever Addons for Elementor <2.2.1 - XSS
CVSS 6.5
CVE-2024-11050 LOW
Amttgroup Hibos < 3.0.3.151204 - Code Injection
CVSS 3.5
CVE-2024-51610 MEDIUM
SEO Themes Display Terms Shortcode <1.0.4 - XSS
CVSS 6.5
CVE-2024-51609 MEDIUM
Elsner Technologies Pvt. Ltd. - Emoji Shortcode <1.0.0 - XSS
CVSS 6.5
CVE-2024-51605 MEDIUM
Genoo < 6.0.10 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51604 MEDIUM
Carlo Andro Mabugay Media Modal <1.0.2 - XSS
CVSS 6.5
CVE-2024-51603 MEDIUM
mirceatm NMR Strava activities <= 1.0.7 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51599 MEDIUM
Simple Business Manager <4.6.7.4 - XSS
CVSS 6.5
CVE-2024-51598 MEDIUM
kendysond Selar.co Widget <= 1.2 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51597 MEDIUM
ThemeShark Templates & Widgets for Elementor <1.1.7 - XSS
CVSS 6.5
CVE-2024-51596 MEDIUM
Nilesh Shiragave Business <1.3 - XSS
CVSS 6.5
CVE-2024-51595 MEDIUM
SKSDEV Toolkit <= 1.0.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51594 MEDIUM
Rafel.sanso Gmap Point List <= 1.1.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-51593 MEDIUM
Glopium Studio Kurs valyut UAH <=2.0 - XSS
CVSS 6.5
CVE-2024-51592 MEDIUM
Meta Store Elements <= 1.0.9 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51591 MEDIUM
WP Grids Slicko < 1.2.0 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51590 MEDIUM
Hoosoft Hoo Addons for Elementor <1.0.7 - XSS
CVSS 6.5
CVE-2024-51589 MEDIUM
Bigmart Elements <= 1.0.3 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51588 MEDIUM
Themehat Super Addons for Elementor - XSS
CVSS 6.5
CVE-2024-51587 MEDIUM
Softfirm Definitive Addons for Elementor <1.5.16 - XSS
CVSS 6.5
CVE-2024-51586 MEDIUM
BRAFT Elementary Addons <2.0.4 - XSS
CVSS 6.5
CVE-2024-51585 MEDIUM
NicheAddons Sales Page Addon - Elementor & Beaver Builder <1.4.2 - XSS
CVSS 6.5
CVE-2024-51668 MEDIUM
MyCurator Content Curation <4.79 - XSS
CVSS 5.9
CVE-2024-51664 MEDIUM
Beds24 Online Booking <2.0.25 - XSS
CVSS 5.9
Details
Vulnerabilities 45,430
Exploit Likelihood High