315 matches found
PT-2024-35886 · WordPress · Sparkle Wp Sparkle Elementor Kit
Name of the Vulnerable Software and Affected Versions: Sparkle WP Sparkle Elementor Kit versions through 2.0.9 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This is a Cross-site...
PT-2024-35877 · Devnex · Devnex Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Devnex Addons For Elementor versions 1.0.8 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This is a Cross-site Scripting vulnerability...
PT-2024-35871 · Unknown · Capitalize My Title
Name of the Vulnerable Software and Affected Versions: Capitalize My Title versions 0.5.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS. A Cross-site Scripting XSS...
PT-2024-38033 · Unknown · Smart Doctor
Name of the Vulnerable Software and Affected Versions: Smart Doctor versions through 21.11.2024 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. The vendor was contacted...
PT-2024-9340 · Drupal · Drupal Core
Name of the Vulnerable Software and Affected Versions: Drupal Core versions 7.0 through 7.101 Description: The issue affects Drupal Core, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation. This enables an attacker to conduct a cross-site scriptin...
PT-2024-35055 · Unknown · Websand Subscription Form
Name of the Vulnerable Software and Affected Versions: Websand Subscription Form versions 1.0.3 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject...
PT-2024-35257 · Unknown · Reconstruction
Name of the Vulnerable Software and Affected Versions: ReConstruction versions 1.4.7 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions...
PT-2024-35192 · Crm 2Go · Crm 2Go
Name of the Vulnerable Software and Affected Versions: CRM 2go versions n/a through 1.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS, allowing DOM-Based XSS. This is a type of attack where an attacker...
PT-2024-34717 · Unknown · Simple Goods
Name of the Vulnerable Software and Affected Versions: Simple Goods versions 0.1.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in Simple Goods. Recommendations: For...
PT-2024-34837 · WordPress · Wp Slide Categorywise
Name of the Vulnerable Software and Affected Versions: Wp Slide Categorywise versions 1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS attacks. Recommendations: F...
PT-2024-34757 · Unknown · Aajoda Testimonials
Name of the Vulnerable Software and Affected Versions: Aajoda Testimonials versions n/a through 2.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS in Aajoda Testimonials...
PT-2024-8622 · Hashicorp +4 · Hashicorp Consul +5
Name of the Vulnerable Software and Affected Versions: Consul affected versions not specified Consul Enterprise affected versions not specified Description: A vulnerability exists in Consul due to the lack of protection of the web page structure, allowing a remote attacker to conduct a cross-site...
PT-2024-34236 · Unknown · Firelight Lightbox
Name of the Vulnerable Software and Affected Versions: Firelight Lightbox versions 2.3.3 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...
PT-2024-34248 · Unknown · Checklist Trip Plan
Name of the Vulnerable Software and Affected Versions: Checklist Trip Plan versions n/a through 1.0.10 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...
PT-2024-34221 · Unknown · Futurio Extra
Name of the Vulnerable Software and Affected Versions: Futurio Extra versions 2.0.11 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...
PT-2024-30467 · Unknown · Bert Kößler Movie Database
Name of the Vulnerable Software and Affected Versions: Bert Kößler Movie Database versions n/a through 1.0.11 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...
PT-2024-33402 · Unknown · My Favorites
Name of the Vulnerable Software and Affected Versions: My Favorites versions n/a through 1.4.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, where an attacker can inject malicio...
PT-2024-33448 · Digitally · Digitally
Name of the Vulnerable Software and Affected Versions: Digitally versions 1.0.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions 1.0.8...
PT-2024-33435 · Unknown · Simple Testimonials Showcase
Name of the Vulnerable Software and Affected Versions: Simple Testimonials Showcase versions 1.1.6 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for the execution of malicious scrip...
PT-2024-33450 · Unknown · Themesflat Addons For Elementor
Name of the Vulnerable Software and Affected Versions: Themesflat Addons For Elementor versions prior to 2.2.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks...