CWE-79
High likelihoodImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
45,461 vulnerabilities with CWE-79
CVE-2024-44002
HIGH
PickPlugins Team Showcase <= 1.22.25 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-44001
MEDIUM
Royal Elementor Addons <= 1.3.982 - Cross-Site Scripting
CVSS 6.5
CVE-2024-43999
MEDIUM
Ninja Forms < 3.8.11 - Stored Cross-Site Scripting
CVSS 5.9
CVE-2024-43995
MEDIUM
Posterity < 3.6 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43994
MEDIUM
CryoutCreations Kahuna < 1.7.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43993
MEDIUM
CryoutCreations Liquido <= 1.0.1.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43992
MEDIUM
LatePoint < 4.9.91 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43991
MEDIUM
Hotel Galaxy < 4.4.24 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43988
MEDIUM
digitalnature Mystique < 2.5.7 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43987
MEDIUM
wayneconnor Sliding Door < 3.6 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43983
MEDIUM
Podlove Podcast Publisher <= 4.1.13 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-43975
HIGH
Super Store Finder <= 6.9.7 - Cross-Site Scripting
CVSS 7.1
CVE-2024-43972
MEDIUM
PageLayer <= 1.8.7 - Stored Cross-Site Scripting
CVSS 5.9
CVE-2024-43971
HIGH
Sunshine Photo Cart <= 3.2.5 - Cross-Site Scripting
CVSS 7.1
CVE-2024-43970
HIGH
SureCart < 2.29.3 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-45452
MEDIUM
CryoutCreations Septera <1.5.2 - XSS
CVSS 6.5
CVE-2024-45451
MEDIUM
Roseta <= 1.3.0 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44064
HIGH
LikeBtn Like Button Rating <= 2.6.53 - Cross-Site Scripting
CVSS 7.1
CVE-2024-44051
MEDIUM
Content Blocks (Custom Post Widget) <= 3.3.5 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44050
MEDIUM
Verbosa <= 1.2.3 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44049
MEDIUM
ThemeHunk Gutenberg Blocks <= 1.2.8 - Authenticated Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44047
MEDIUM
IDX Broker IMPress for IDX Broker <= 3.2.2 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44009
HIGH
WCFM Marketplace <= 3.6.11 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2024-44008
MEDIUM
Geo Mashup <= 1.13.12 - Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-44007
HIGH
SKT Templates - Elementor & Gutenberg templates <= 6.14 - Reflected Cross-Site Scripting
CVSS 7.1
Details
Vulnerabilities
45,461
Exploit Likelihood
High