CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4382 matches found

NVD•added 2024/12/13 3:15 p.m.•20 views

CVE-2024-54316

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Restaurant & Cafe Addon for Elementor restaurant-cafe-addon-for-elementor allows DOM-Based XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through = 1.5.8...

6.5CVSS0.00391EPSS

Exploits0References1

NVD•added 2024/12/13 3:15 p.m.•6 views

CVE-2024-54277

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alireza Aliniya Nias course nias-course allows DOM-Based XSS.This issue affects Nias course: from n/a through = 1.2.10...

6.5CVSS0.00376EPSS

Exploits0References1

NVD•added 2024/12/13 3:15 p.m.•4 views

CVE-2024-54250

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in prodigycommerce Prodigy Commerce prodigy-commerce allows DOM-Based XSS.This issue affects Prodigy Commerce: from n/a through = 3.0.8...

6.5CVSS0.00384EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:25 p.m.•9 views

CVE-2024-54346 WordPress Barter theme <= 1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sonalsinha21 Barter barter allows DOM-Based XSS.This issue affects Barter: from n/a through = 1.6...

6.5CVSS7.2AI score0.00305EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•44 views

CVE-2024-54346

CVE-2024-54346 affects the Barter WordPress theme (SKT Themes Barter). The issue is a DOM-based XSS caused by improper input neutralization during web page generation, affecting Barter up to version 1.6. The vulnerability is listed as active in public records and has a patch available (patched); ...

6.5CVSS7.2AI score0.00305EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:25 p.m.•19 views

CVE-2024-54345 WordPress Bicycleshop theme <= 1.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sonalsinha21 Bicycleshop bicycleshop allows DOM-Based XSS.This issue affects Bicycleshop: from n/a through = 1.5...

6.5CVSS0.00287EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•43 views

CVE-2024-54345

CVE-2024-54345 is a DOM-based XSS vulnerability due to improper input neutralization in SKT Themes Bicycleshop. The issue affects Bicycleshop versions up to 1.5 and has a CVSS v3.1 base score of 6.5 (MEDIUM). The description notes Cross-site Scripting via web page generation but provides no expli...

6.5CVSS7.2AI score0.00287EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:25 p.m.•16 views

CVE-2024-54338 WordPress Hello Event Widgets For Elementor plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in christerf Hello Event Widgets For Elementor hello-event-widgets-for-elementor allows DOM-Based XSS.This issue affects Hello Event Widgets For Elementor: from n/a through = 1.0.2...

6.5CVSS0.00311EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•43 views

CVE-2024-54338

CVE-2024-54338 affects Hello Event Widgets For Elementor (WordPress) and allows DOM-based XSS due to improper neutralization of user input during web page generation for Hello Event Widgets For Elementor

6.5CVSS7.2AI score0.00311EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:25 p.m.•8 views

CVE-2024-54334 WordPress Quran Phrases About Most People Shortcodes plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zeshanb Quran Phrases About Most People Shortcodes quran-phrases-about-most-people-shortcodes allows DOM-Based XSS.This issue affects Quran Phrases About Most People Shortcodes: from n/a through =...

6.5CVSS7.2AI score0.00311EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:25 p.m.•21 views

CVE-2024-54334 WordPress Quran Phrases About Most People Shortcodes plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in zeshanb Quran Phrases About Most People Shortcodes quran-phrases-about-most-people-shortcodes allows DOM-Based XSS.This issue affects Quran Phrases About Most People Shortcodes: from n/a through =...

6.5CVSS0.00311EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•36 views

CVE-2024-54334

CVE-2024-54334 affects the Quran Phrases About Most People Shortcodes WordPress plugin. Connected data confirm a DOM-Based XSS in Quran Phrases About Most People Shortcodes, affecting version range from n/a up to 1.4. Wordfence vulnerability details note the issue is Mitigated by patches in the 1...

6.5CVSS7.2AI score0.00311EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•43 views

CVE-2024-54316

CVE-2024-54316 is a stored XSS in Restaurant & Cafe Addon for Elementor (WordPress plugin). The issue arises from improper neutralization of input during web page generation, allowing HTML/JS input to be stored and reflected in the page. Affected versions are up to 1.5.8, and exploitation require...

6.5CVSS7.2AI score0.00391EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/12/13 2:25 p.m.•18 views

CVE-2024-54316 WordPress Restaurant & Cafe Addon for Elementor plugin <= 1.5.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Restaurant & Cafe Addon for Elementor restaurant-cafe-addon-for-elementor allows DOM-Based XSS.This issue affects Restaurant & Cafe Addon for Elementor: from n/a through = 1.5.8...

6.5CVSS0.00391EPSS

Exploits0References1

CVE•added 2024/12/13 2:25 p.m.•44 views

CVE-2024-54315

CVE-2024-54315: DOM-based stored XSS in NicheAddons Events Addon for Elementor (Events Addon for Elementor) affects

6.5CVSS7.2AI score0.00391EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/12/13 2:25 p.m.•8 views

CVE-2024-54315 WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NicheAddons Events Addon for Elementor allows DOM-Based XSS.This issue affects Events Addon for Elementor: from n/a through 2.2.2...

6.5CVSS7AI score0.00391EPSS

Exploits0References1

Cvelist•added 2024/12/13 2:25 p.m.•18 views

CVE-2024-54315 WordPress Events Addon for Elementor plugin <= 2.2.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in nicheaddons Events Addon for Elementor events-addon-for-elementor allows DOM-Based XSS.This issue affects Events Addon for Elementor: from n/a through = 2.2.2...

6.5CVSS0.00391EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:24 p.m.•6 views

CVE-2024-54277 WordPress Nias course plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Alireza aliniya Nias course allows DOM-Based XSS.This issue affects Nias course: from n/a through 1.2.1...

6.5CVSS7AI score0.00376EPSS

Exploits0References1

CVE•added 2024/12/13 2:24 p.m.•39 views

CVE-2024-54277

CVE-2024-54277 is an authenticated XSS vulnerability in the WordPress plugin “Nias course” affecting versions up to 1.2.1. The issue is described as a Cross-site Scripting vulnerability (DOM-based XSS) that can be triggered via input during web page generation, allowing an attacker with at least ...

6.5CVSS7.2AI score0.00376EPSS

Exploits0References1

CVE•added 2024/12/13 2:24 p.m.•36 views

CVE-2024-54250

CVE-2024-54250 : Prodigy Commerce WordPress plugin contains a DOM-based XSS due to improper input neutralization during web page generation, affecting versions up to 3.0.8. Mitigation: upgrade to a version later than 3.0.8 (documented remediation). The connected records confirm the vulnerability ...

6.5CVSS7.2AI score0.00384EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by