CWE-79
High likelihoodImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
44,930 vulnerabilities with CWE-79
CVE-2026-28109
HIGH
LambertGroup AllInOne Content Slider <=3.8 - XSS
CVSS 7.1
CVE-2026-28108
HIGH
LambertGroup AllInOne ThumbnailsBanner <=3.8 - XSS
CVSS 7.1
CVE-2026-28103
HIGH
LambertGroup LBG Zoominoutslider <= 5.4.5 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28102
HIGH
UberSlider Classic <= 2.5 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28101
HIGH
UberSlider MouseInteraction <=2.3 - XSS
CVSS 7.1
CVE-2026-28100
HIGH
UberSlider PerpetuumMobile <=2.3 - XSS
CVSS 7.1
CVE-2026-28099
HIGH
UberSlider Ultra <= 2.3 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28075
HIGH
Porto <= 7.6.2 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28072
HIGH
PixFort pixfort Core <= 3.2.22 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28042
HIGH
Astoundify Listify <= 3.2.5 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-28037
HIGH
EventON <= 4.9.12 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27385
HIGH
DesignThemes Portfolio <= 1.3 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27382
HIGH
RadiusTheme Metro <= 2.13 - DOM-Based Cross-Site Scripting
CVSS 7.1
CVE-2026-27376
HIGH
Claue - Clean, Minimal Elementor WooCommerce Theme <= 2.2.7 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27375
HIGH
JanStudio Gecko <= 1.9.8 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27367
HIGH
ThemeGoods Musico < 3.4.5 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27363
HIGH
WP Bakery Autoresponder Addon <=1.0.6 - XSS
CVSS 7.1
CVE-2026-27359
HIGH
Awa Plugins <= 1.4.4 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27358
HIGH
ThemeGoods Architecturer <=3.8.8 - XSS
CVSS 7.1
CVE-2026-27354
MEDIUM
WooCommerce Coming Soon Product <=5.0 - XSS
CVSS 6.5
CVE-2026-27353
HIGH
ThemeGoods Grand News <=3.4.3 - XSS
CVSS 7.1
CVE-2026-27352
HIGH
ThemeGoods Starto < 2.2.5 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-27348
HIGH
ThemeGoods Photography <=7.6.1 - XSS
CVSS 7.1
CVE-2026-27332
HIGH
Skygroup Agrofood < 1.4.0 - Reflected Cross-Site Scripting
CVSS 7.1
CVE-2026-22467
HIGH
DeepDigital <= 1.0.2 - Reflected Cross-Site Scripting
CVSS 7.1
Details
Vulnerabilities
44,930
Exploit Likelihood
High