Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4382 matches found

CVE
CVEadded 2024/11/09 2:51 p.m.45 views

CVE-2024-51589

CVE-2024-51589 refers to a DOM-based XSS vulnerability in WordPress plugin Bigmart Elements (versions <= 1.0.3). The description in the initial document notes Improper Neutralization of Input During Web Page Generation and specifies Bigmart Elements affected up to 1.0.3. Connected sources (Pat...

6.5CVSS5.9AI score0.00229EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/09 2:51 p.m.17 views

CVE-2024-51589 WordPress Bigmart Elements plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpcirqle Bigmart Elements bigmart-elements allows DOM-Based XSS.This issue affects Bigmart Elements: from n/a through = 1.0.3...

6.5CVSS5.9AI score0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/09 2:50 p.m.8 views

CVE-2024-51590 WordPress Hoo Addons for Elementor plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in HooThemes Hoo Addons for Elementor hoo-addons-for-elementor allows DOM-Based XSS.This issue affects Hoo Addons for Elementor: from n/a through = 1.0.6...

6.5CVSS5.9AI score0.00234EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 2:50 p.m.48 views

CVE-2024-51590

CVE-2024-51590 describes a DOM-based XSS in the WordPress plugin Hoo Addons for Elementor . Affected are versions up to 1.0.6; the issue arises from improper neutralization of input during web page generation. Impact is DOM-based XSS exposure as stated in the CVE, with no exploitation details pro...

6.5CVSS5.9AI score0.00234EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/11/09 2:50 p.m.23 views

CVE-2024-51591 WordPress Slicko plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Grids Slicko slicko-for-elementor allows DOM-Based XSS.This issue affects Slicko: from n/a through = 1.2.0...

6.5CVSS0.00248EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 2:47 p.m.45 views

CVE-2024-51592

CVE-2024-51592 concerns the WordPress plugin Meta Store Elements (versions

6.5CVSS5.9AI score0.00234EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/11/09 2:32 p.m.66 views

CVE-2024-51598

CVE-2024-51598 is a DOM-based XSS in WordPress plugin “Selar.co Widget” with input neutralization defects. Affected: Selar.co Widget versions n/a through 1.2. Public fix details are not provided in the connected documents; monitor for updates and vendor advisories for a patch or workaround.

6.5CVSS5.9AI score0.00243EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/09 2:32 p.m.11 views

CVE-2024-51598 WordPress Selar.co Widget plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kendysond Selar.co Widget selar-co-widget allows DOM-Based XSS.This issue affects Selar.co Widget: from n/a through = 1.2...

6.5CVSS5.9AI score0.00243EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/09 2:30 p.m.14 views

CVE-2024-51603 WordPress NMR Strava activities plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mirceatm NMR Strava activities nmr-strava-activities allows DOM-Based XSS.This issue affects NMR Strava activities: from n/a through = 1.0.7...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 2:30 p.m.67 views

CVE-2024-51603

CVE-2024-51603 affects the WordPress plugin NMR Strava activities up to version 1.0.6. It is a DOM-based XSS caused by improper input neutralization during page generation. Exploitation details are not provided in the documents; success could lead to attacker-supplied script executing in a victim...

6.5CVSS5.9AI score0.00248EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/11/09 2:21 p.m.53 views

CVE-2024-51604

CVE-2024-51604 is a WordPress plugin vulnerability: Media Modal

6.5CVSS5.9AI score0.00209EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/11/09 2:20 p.m.21 views

CVE-2024-51605 WordPress Genoo plugin <= 6.0.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Genoo Genoo genoo allows DOM-Based XSS.This issue affects Genoo: from n/a through = 6.0.10...

6.5CVSS0.00229EPSS
Exploits0References1
NVD
NVDadded 2024/11/09 2:15 p.m.49 views

CVE-2024-51628

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in EzyOnlineBookings EzyOnlineBookings Online Booking System Widget ezyonlinebookings-online-booking-system allows DOM-Based XSS.This issue affects EzyOnlineBookings Online Booking System Widget: from...

6.5CVSS0.00243EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 1:41 p.m.42 views

CVE-2024-51628

CVE-2024-51628: WordPress EzyOnlineBookings Online Booking System Widget suffers a DOM-based XSS due to improper input neutralization in page generation. Affected versions: plugin

6.5CVSS5.9AI score0.00243EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 1:39 p.m.48 views

CVE-2024-51629

CVE-2024-51629 is a DOM-Based XSS vulnerability in the WordPress plugin Header Footer Composer for Elementor (MetricThemes) affecting versions up to 1.0.4. Exploitation would involve improper input neutralization during web page generation, enabling an attacker with access to the plugin to inject...

6.5CVSS5.9AI score0.00243EPSS
Exploits0References1
OSV
OSVadded 2024/11/09 1:15 p.m.3 views

CVE-2024-51675

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in aThemes aThemes Addons for Elementor allows DOM-Based XSS.This issue affects aThemes Addons for Elementor: from n/a through 1.0.7...

5.4CVSS5.8AI score0.00239EPSS
Exploits0References1
OSV
OSVadded 2024/11/09 1:15 p.m.4 views

CVE-2024-51673

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in HasThemes HT Politic allows DOM-Based XSS.This issue affects HT Politic: from n/a through 2.4.4...

5.4CVSS5.8AI score0.00233EPSS
Exploits0References1
NVD
NVDadded 2024/11/09 1:15 p.m.10 views

CVE-2024-51674

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fast Themes Sastra Essential Addons for Elementor sastra-essential-addons-for-elementor allows DOM-Based XSS.This issue affects Sastra Essential Addons for Elementor: from n/a through = 1.0.5...

6.5CVSS0.00243EPSS
Exploits0References1
NVD
NVDadded 2024/11/09 1:15 p.m.15 views

CVE-2024-51673

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DevItems HT Politic wp-politic allows DOM-Based XSS.This issue affects HT Politic: from n/a through = 2.4.4...

6.5CVSS0.00233EPSS
Exploits0References1
CVE
CVEadded 2024/11/09 1:5 p.m.43 views

CVE-2024-51673

CVE-2024-51673: WordPress HT Politic plugin suffers DOM-based XSS due to improper input neutralization during page generation in versions up to 2.4.4 (affects HT Politic: from n/a through 2.4.4). The vulnerability can enable script injection by manipulating input processed during page rendering. ...

6.5CVSS5.9AI score0.00233EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder