CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4382 matches found

CVE•added 2024/11/19 4:31 p.m.•64 views

CVE-2024-51906

CVE-2024-51906 concerns a DOM-based XSS in RSV 360 View (WordPress plugin). The RSV 360 View vulnerability is caused by improper input neutralization during web page generation, enabling cross-site scripting. According to PT Security details, affected RSV 360 View versions include n/a through 1.0...

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•55 views

CVE-2024-51908

CVE-2024-51908 is a DOM-based XSS in the WordPress plugin Adventure Bucket List (WordPress plugin family). The vulnerability arises from improper input neutralization during page generation, enabling DOM-based cross-site scripting. Affected versions are reported as “from n/a through 1.0.9” for Ad...

6.5CVSS7.2AI score0.00312EPSS

Exploits0References1

Vulnrichment•added 2024/11/19 4:31 p.m.•9 views

CVE-2024-51908 WordPress Adventure Bucket List plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gonzalo Geraldo Adventure Bucket List allows DOM-Based XSS.This issue affects Adventure Bucket List: from n/a through 1.0.9...

6.5CVSS6.9AI score0.00312EPSS

Exploits0References1

Cvelist•added 2024/11/19 4:31 p.m.•19 views

CVE-2024-51911 WordPress Featured product by category name plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ketan Patel Featured product by category name featured-product-by-category-name allows DOM-Based XSS.This issue affects Featured product by category name: from n/a through = 1.1...

6.5CVSS0.00285EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•55 views

CVE-2024-51911

CVE-2024-51911 is a DOM-based Cross-Site Scripting vulnerability in the WordPress plugin “Featured product by category name” (author: Ketan Patel) affecting version up to 1.1. The vulnerability arises from improper input neutralization during web page generation, enabling DOM-based XSS. The CVE e...

6.5CVSS7.2AI score0.00285EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•45 views

CVE-2024-51910

CVE-2024-51910 is a DOM-based XSS in Mauro Cordioli’s Assist24 Help Desk WordPress plugin (vulnerable through 20150401.2). Root cause: improper input neutralization during web page generation. Affected software: Assist24 Help Desk (WordPress plugin). Impact: Cross-site scripting via crafted input...

6.5CVSS7.2AI score0.00285EPSS

Exploits0References1

CVE•added 2024/11/19 4:31 p.m.•48 views

CVE-2024-51912

CVE-2024-51912 is a DOM-based Cross-Site Scripting vulnerability in IntelliWidget Elements (WordPress IntelliWidget Elements), allowing input handling to be improperly neutralized during web page generation. The issue affects IntelliWidget Elements versions up to 2.2.7 (no details on fixed versio...

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•51 views

CVE-2024-51916

CVE-2024-51916 affects the WordPress plugin Multifox Plus (versions

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

Vulnrichment•added 2024/11/19 4:30 p.m.•5 views

CVE-2024-51916 WordPress Multifox Plus plugin <= 1.1.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Creative Brahma Multifox Plus multifox-plus allows DOM-Based XSS.This issue affects Multifox Plus: from n/a through = 1.1.6...

6.5CVSS8.6AI score0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•48 views

CVE-2024-51920

CVE-2024-51920 affects Map Store Locator (WordPress plugin) versions 1.2.1 and earlier. Root cause: improper input neutralization during web page generation, enabling DOM-Based XSS. Impact: DOM-based cross-site scripting as described; no exploitation details provided in the sources. Remediation: ...

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•48 views

CVE-2024-51918

CVE-2024-51918 is a DOM-based XSS in WordPress Pay With Stripe (plugin) up to version 1.2.1, caused by improper input neutralization during page generation. The CVSS v3.1 base score is 6.5 (Medium); attack vector is network, require user interaction, and the change in scope. References indicate t...

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

Cvelist•added 2024/11/19 4:30 p.m.•22 views

CVE-2024-51921 WordPress scrollup plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in midori scrollup scrollup allows DOM-Based XSS.This issue affects scrollup: from n/a through = 1.1...

6.5CVSS0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•48 views

CVE-2024-51921

CVE-2024-51921 pertains to the WordPress plugin scrollup (Midori) and is described as an input sanitization flaw that enables cross-site scripting. Technical details across connected docs indicate the issue affects scrollup versions up to 1.1 (n/a through 1.1) and is characterized as a Cross-Site...

6.5CVSS7.2AI score0.00302EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•56 views

CVE-2024-51927

CVE-2024-51927 is linked to Rig Elements For Elementor (WordPress plugin). Connected sources indicate an authenticated, DOM-based Cross-Site Scripting vulnerability in Rig Elements For Elementor, affecting versions up to 1.0 (auth+ requirement implied). The issue arises from improper input handli...

6.5CVSS7.2AI score0.00245EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•61 views

CVE-2024-51929

CVE-2024-51929 is a DOM-based XSS in the WordPress Icon Widget ( Phil Spectrum Icon Widget ) caused by improper input neutralization during page generation. Affected: Icon Widget

6.5CVSS7.2AI score0.00274EPSS

Exploits0References1

Cvelist•added 2024/11/19 4:30 p.m.•18 views

CVE-2024-51929 WordPress Icon Widget plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in philspectrum Icon Widget icon-widget-with-links allows DOM-Based XSS.This issue affects Icon Widget: from n/a through = 1.1.0...

6.5CVSS0.00274EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•57 views

CVE-2024-51928

CVE-2024-51928 is a WordPress plugin vulnerability in Blocks Post Grid (

6.5CVSS7.2AI score0.00253EPSS

Exploits0References1

CVE•added 2024/11/19 4:30 p.m.•52 views

CVE-2024-51931

CVE-2024-51931 is a DOM-based XSS affecting the WordPress plugin AzonBox (versions up to 1.1.2). The issue arises from improper input neutralization during web-page generation, enabling cross-site scripting via manipulated input in the plugin. Public references (RH, NVD, CVE listings) describe th...

6.5CVSS7.2AI score0.00231EPSS

Exploits0References1

Vulnrichment•added 2024/11/19 4:30 p.m.•11 views

CVE-2024-51932 WordPress Kings Tab Slider plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saif Bin-Alam Kings Tab Slider allows DOM-Based XSS.This issue affects Kings Tab Slider: from n/a through 1.0...

6.5CVSS6.9AI score0.00245EPSS

Exploits0References1

Cvelist•added 2024/11/19 4:30 p.m.•19 views

CVE-2024-51935 WordPress Fast Video and Image Display plugin <= 2.5.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Sam Perrow Fast Video and Image Display fast-video-and-image-display allows DOM-Based XSS.This issue affects Fast Video and Image Display: from n/a through = 2.5.2...

6.5CVSS0.00231EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by