164 matches found
CVE-2026-34623
Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation of thi...
CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force Ultimate Addons for WPBakery Page Builder allows DOM-Based XSS.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a before 3.21.4...
DOM-based XSS @remix-run/router Dependency in Crowd Data Center
This High severity DOM-based XSS vulnerability was introduced in version 7.1.0 of Crowd Data Center. This DOM-based XSS vulnerability, with a CVSS Score of 8 and a CVSS Vector of CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N allows an unauthenticated attacker to execute arbitrary HTML or JavaScrip...
CVE-2025-68854
CVE-2025-68854 is a WordPress plugin vulnerability in ID Arrays (id-arrays)
CVE-2022-26263
Yonyou u8 v13.0 was discovered to contain a DOM-based cross-site scripting XSS vulnerability via the component /u8sl/WebHelp...
CVE-2025-62097
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in seothemes SEO Slider seo-slider allows DOM-Based XSS.This issue affects SEO Slider: from n/a through = 1.1.1...
EUVD-2025-205924
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ruhul Amin Content Fetcher allows DOM-Based XSS.This issue affects Content Fetcher: from n/a through 1.1...
PT-2025-54334
Name of the Vulnerable Software and Affected Versions WooCommerce Parcelas versions through 1.3.5 Description The software contains a flaw related to improper input handling during web page generation, specifically a DOM-Based Cross-Site Scripting issue. This allows for the potential execution of...
CVE-2025-64563
Adobe Experience Manager versions 6.5.23 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability that could be exploited by a low privileged attacker to execute malicious scripts in the context of the victim's browser. Exploitation of this issue requires user interaction,...
PT-2025-49923
CVE-2025-67549 Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobbingwide oik oik allows DOM-Based XSS.This issue affects oik:… https://t.co/n89C6BHSeV...
CVE-2025-49936
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in xtemos WoodMart woodmart allows DOM-Based XSS.This issue affects WoodMart: from n/a through 8.3.2...
CVE-2025-58961
CVE-2025-58961 is a DOM-based XSS vulnerability in the WordPress CF7 Auto Responder Addon (CF7-autoresponder-addon), affecting versions up to and including 2.4. The issue arises from improper input handling during web page generation, enabling cross-site scripting. Public writeups from CNVD, RH, ...
EUVD-2017-12955
Malware in sbrugna...
EUVD-2024-27203
Malicious code in bioql PyPI...
EUVD-2024-43975
Malicious code in bioql PyPI...
EUVD-2024-43974
Malicious code in bioql PyPI...
EUVD-2022-29813
Malicious code in bioql PyPI...
EUVD-2024-40672
Malicious code in bioql PyPI...
EUVD-2024-2650
Malicious code in bioql PyPI...
EUVD-2025-7381
Malicious code in bioql PyPI...