CVE-2023-31094

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Lauri Karisola / WP Trio Stock Sync for WooCommerce plugin = 2.4.0 versions...

CVE-2023-22715

Auth. admin+ Cross-Site Scripting XSS vulnerability in Lester 'GaMerZ' Chan WP-CommentNavi plugin = 1.12.1 versions...

CVE-2023-48326

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pixelite Events Manager allows Reflected XSS.This issue affects Events Manager: from n/a through 6.4.5...

CVE-2023-39924

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Mitchell Bennis Simple File List plugin = 6.1.9 versions...

CVE-2023-26534

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in OneWebsite WP Repost plugin = 0.1 versions...

CVE-2023-35779

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Seed Webs Seed Fonts plugin = 2.3.1 versions...

CVE-2023-45007

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Fotomoto plugin = 1.2.8 versions...

CVE-2023-44852

Cross Site Scripting XSS vulnerability in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker to execute arbitrary code via a crafted script to the csettrapsdecode function in the acuweb file...

CVE-2023-41922

A 'Cross-site Scripting' XSS vulnerability, characterized by improper input neutralization during web page generation, has been discovered. This vulnerability allows for Stored XSS attacks to occur. Multiple areas within the administration interface of the webserver lack adequate input validation...

CVE-2023-41905

NETSCOUT nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting XSS vulnerability by an authenticated user...

CVE-2023-41621

A Cross Site Scripting XSS vulnerability was discovered in Emlog Pro v2.1.14 via the component /admin/store.php...

CVE-2023-41171

NetScout nGeniusONE 6.3.4 build 2298 allows a Stored Cross-Site scripting vulnerability issue 3 of 4...

CVE-2023-41170

NetScout nGeniusONE 6.3.4 build 2298 allows a Reflected Cross-Site scripting vulnerability...

CVE-2023-39543

Cross-site scripting vulnerability in LuxCal Web Calendar prior to 5.2.3M MySQL version and LuxCal Web Calendar prior to 5.2.3L SQLite version allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is using the product...

CVE-2023-38964

Creative Item Academy LMS 6.0 was discovered to contain a cross-site scripting XSS vulnerability...

CVE-2023-38305

An issue was discovered in Webmin 2.021. The download functionality allows an attacker to exploit a Cross-Site Scripting XSS vulnerability. By providing a crafted download path containing a malicious payload, an attacker can inject arbitrary code, which is then executed within the context of the...

CVE-2023-3827

A vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /listplace/user/ticket/create of the component HTTP POST Request Handler. The manipulation of the argument message leads...

CVE-2023-47096

A Reflected Cross-Site Scripting XSS vulnerability in the Cloudmin Services Client under System Setting in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Cloudmin services master field...

CVE-2023-46948

A reflected Cross-Site Scripting XSS vulnerability was found on Temenos T24 Browser R19.40 that enables a remote attacker to execute arbitrary JavaScript code via the skin parameter in the about.jsp and genrequest.jsp components...

CVE-2023-46583

Cross-Site Scripting XSS vulnerability in PHPGurukul Nipah virus NiV " Testing Management System v.1.0 allows attackers to execute arbitrary code via a crafted payload injected into the State field...