CVE-2024-50549 WordPress Bonway Static Block Editor plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Steven Nolles Bonway Static Block Editor bonway-static-block-editor allows DOM-Based XSS.This issue affects Bonway Static Block Editor: from n/a through = 1.1.0...

CVE-2024-50549 WordPress Bonway Static Block Editor plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Steven Nolles Bonway Static Block Editor bonway-static-block-editor allows DOM-Based XSS.This issue affects Bonway Static Block Editor: from n/a through = 1.1.0...

CVE-2024-50554 WordPress Sided plugin <= 1.4.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sided Sided sided allows DOM-Based XSS.This issue affects Sided: from n/a through = 1.4.5...

CVE-2024-50553

CVE-2024-50553 — DOM-based XSS in WordPress plugin Classy Addons for Elementor (

CVE-2024-50556 WordPress WM Zoom plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WorldMarkerter WM Zoom wm-zoom allows DOM-Based XSS.This issue affects WM Zoom: from n/a through = 1.0...

CVE-2024-50556

CVE-2024-50556 affects WordPress WM Zoom plugin versions

CVE-2024-51795

CVE-2024-51795: WordPress plugin ByteLabX Pdf Embedder Fay is affected (versions up to 1.10.1). The issue is a DOM-Based XSS caused by improper input neutralization during web page generation. Impact is DOM-based script execution in affected pages. The record notes a fix, but the exact patched ve...

CVE-2024-51796

CVE-2024-51796 describes a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin “Trendy Restaurant Menu” by WPManageNinja. The issue arises from improper input neutralization during web page generation, affecting Trendy Restaurant Menu versions up to 1.0.0 (the range given in rela...

CVE-2024-51796 WordPress Trendy Restaurant Menu plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPManageNinja Trendy Restaurant Menu allows DOM-Based XSS.This issue affects Trendy Restaurant Menu: from n/a through 1.0.0...

CVE-2024-51797 WordPress Ultimate Accordion plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Md. Shiddikur Rahman Ultimate Accordion allows DOM-Based XSS.This issue affects Ultimate Accordion: from n/a through 1.0...

CVE-2024-51798 WordPress Surbma | Font Awesome plugin <= 3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Surbma Surbma | Font Awesome surbma-font-awesome allows DOM-Based XSS.This issue affects Surbma | Font Awesome: from n/a through = 3.0...

CVE-2024-51797 WordPress Ultimate Accordion plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Md. Shiddikur Rahman Ultimate Accordion ultimate-accordion allows DOM-Based XSS.This issue affects Ultimate Accordion: from n/a through = 1.0...

CVE-2024-51799

CVE-2024-51799 affects Bg Patriarchia BU (WordPress plugin) up to version 2.2.3, with a DOM-based Cross-Site Scripting vulnerability caused by improper input neutralization during web page generation. This can enable XSS on pages rendered by Bg Patriarchia BU. Evidence from multiple sources confi...

CVE-2024-51803

CVE-2024-51803 affects Magnetic Creative’s WordPress plugin “Inline Click To Tweet.” The vulnerability is a DOM-based XSS triggered by improper neutralization of user input during web page generation, affecting the Inline Click To Tweet component from versions n/a to 1.0.0. The Connected document...

CVE-2024-51802

CVE-2024-51802 is a DOM-based XSS vulnerability in the Bread & Butter WordPress plugin (Bread & Butter) affecting versions up to 7.4.857. The issue arises from improper neutralization of input during Web Page Generation, enabling cross-site scripting. Multiple connected sources (e.g., Red Hat adv...

CVE-2024-51804 WordPress Moka Get Posts Shortcode plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bobmatnyc Moka Get Posts Shortcode moka-get-posts allows DOM-Based XSS.This issue affects Moka Get Posts Shortcode: from n/a through = 1.0...

CVE-2024-51813 WordPress Anant Addons for Elementor plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in anantaddons Anant Addons for Elementor anant-addons-for-elementor allows DOM-Based XSS.This issue affects Anant Addons for Elementor: from n/a through = 1.0.5...

CVE-2024-51814 WordPress 活动链接推广插件 plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 野人 活动链接推广插件 allows DOM-Based XSS.This issue affects 活动链接推广插件: from n/a through 1.2.0...

CVE-2024-51814

CVE-2024-51814 is a DOM-based XSS in WordPress plugin 活动链接推广插件 (yr-activity-link), with improper input neutralization during page generation. Affected versions: 1.2.0 and earlier (from n/a through 1.2.0). The CVSSv3.1 base score is 6.5 (Medium) with Network attack vector, Low/Low/Low impacts and ...

CVE-2024-51814 WordPress 活动链接推广插件 plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in 野人 活动链接推广插件 yr-activity-link allows DOM-Based XSS.This issue affects 活动链接推广插件: from n/a through = 1.2.0...