CVE-2023-32595

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Palasthotel by Edward Bock, Katharina Rompf Sunny Search plugin = 1.0.2 versions...

CVE-2023-32957

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Dazzlersoft Team Members Showcase plugin = 1.3.4 versions...

CVE-2023-32505

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Arshid Easy Hide Login plugin = 1.0.7 versions...

CVE-2023-5950

Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a reflected cross site scripting vulnerability. This vulnerability allows attackers to inject JS into the error path, potentially leading to unauthorized execution of scripts within a user's web browser. This vulnerability is fixed in...

CVE-2023-49174

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dFactory Responsive Lightbox & Gallery allows Stored XSS.This issue affects Responsive Lightbox & Gallery: from n/a through 2.4.5...

CVE-2023-51514

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Codeboxr Team CBX Bookmark & Favorite allows Stored XSS.This issue affects CBX Bookmark & Favorite: from n/a through 1.7.13...

CVE-2023-51669

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Artios Media Product Code for WooCommerce allows Stored XSS.This issue affects Product Code for WooCommerce: from n/a through 1.4.4...

CVE-2023-33984

SAP NetWeaver Design Time Repository - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could...

CVE-2023-47695

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Scribit Shortcodes Finder plugin = 1.5.3 versions...

CVE-2023-42022

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 265938...

CVE-2023-24396

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in E4J s.R.L. VikBooking Hotel Booking Engine & PMS plugin = 1.5.11 versions...

CVE-2023-24376

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Nico Graff WP Simple Events plugin = 1.0 versions...

CVE-2023-24390

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WeSecur Security plugin = 1.2.1 versions...

CVE-2023-46208

Unauth. Reflected Cross-Site Scripting XSS vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing plugin = 1.4.6 versions...

CVE-2023-46093

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in LionScripts.Com Webmaster Tools plugin = 2.0 versions...

CVE-2023-28493

Auth subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Macho Themes NewsMag theme = 2.4.4 versions...

CVE-2023-28423

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Prism Tech Studios Modern Footnotes plugin = 1.4.15 versions...

CVE-2023-37997

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Dharmesh Patel Post List With Featured Image plugin = 1.2 versions...

CVE-2023-31220

Unauth. Reflected Cross-Site Scripting XSS vulnerability in WP-EXPERTS.IN TEAM WP Categories Widget plugin = 2.2 versions...

CVE-2023-23881

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in GreenTreeLabs Circles Gallery plugin = 1.0.10 versions...