CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,430 vulnerabilities with CWE-79
CVE-2024-51692 HIGH
Bing Search API Integration <0.3.3 - XSS
CVSS 7.1
CVE-2024-51691 HIGH
Aryan Duntley Admin Amplify <1.3.0 - XSS
CVSS 7.1
CVE-2024-51690 HIGH
Wp Slide Categorywise <= 1.1 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-51676 MEDIUM
Delisho <= 1.0.6 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51675 MEDIUM
aThemes Addons for Elementor <1.0.8 - XSS
CVSS 6.5
CVE-2024-51674 MEDIUM
TemplatesCoder Sastra Essential Addons - XSS
CVSS 6.5
CVE-2024-51673 MEDIUM
HT Politic < 2.4.4 - DOM-Based Cross-Site Scripting
CVSS 6.5
CVE-2024-51670 MEDIUM
JoomSky JS Help Desk <= 2.8.7 - Stored Cross-Site Scripting
CVSS 5.9
CVE-2024-10837 MEDIUM
SysBasics Customize My Account for WooCommerce <= 2.7.29 - Reflected XSS via Tab Parameter
CVSS 6.1
CVE-2024-51761 HIGH
WPHelpful <= 1.2.4 - Stored Cross-Site Scripting
CVSS 7.1
CVE-2024-51760 HIGH
RistrettoApps Dashing Memberships <1.1 - XSS
CVSS 7.1
CVE-2024-51759 HIGH
Detlef Beyer SVT Simple <1.0.1 - XSS
CVSS 7.1
CVE-2024-51719 HIGH
Simplistic SEO <= 2.3.0 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-51718 HIGH
Adam Dehnel Simple Modal <0.3.3 - XSS
CVSS 7.1
CVE-2024-51717 HIGH
Perception System Ajax Content Filter <1.0 - XSS
CVSS 7.1
CVE-2024-51716 HIGH
Twitter real time search scrolling <= 7.0 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-51714 HIGH
Syed Umair Hussain Shah User Password Reset <1.0 - XSS
CVSS 7.1
CVE-2024-51713 HIGH
TRe Technology And Research S.R.L HQ60 Fidelity Card - XSS
CVSS 7.1
CVE-2024-51712 HIGH
Visser Labs Jigoshop - Store Toolkit <1.4.0 - XSS
CVSS 7.1
CVE-2024-51711 HIGH
Saragna <= 1.0 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-51710 HIGH
Minerva Infotech Responsive Data Table <1.3 - XSS
CVSS 7.1
CVE-2024-51709 HIGH
Marian Dietz TeleAdmin <1.0.0 - XSS
CVSS 7.1
CVE-2024-51708 HIGH
Narnoo Commerce Manager <1.6.0 - XSS
CVSS 7.1
CVE-2024-51707 HIGH
Webcodin WP Visual Adverts <2.3.0 - XSS
CVSS 7.1
CVE-2024-51781 HIGH
Firework Shoppable Live Video <= 6.3 - Reflected Cross-Site Scripting
CVSS 7.1
Details
Vulnerabilities 45,430
Exploit Likelihood High