CVE-2026-42652

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpeverest User Registration user-registration allows Reflected XSS.This issue affects User Registration: from n/a through = 5.1.5...

CVE-2025-53229

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kamleshyadav RockON DJ rockon allows Reflected XSS.This issue affects RockON DJ: from n/a through = 3.3...

EUVD-2025-35498

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in growniche Simple Stripe Checkout simple-stripe-checkout allows Reflected XSS.This issue affects Simple Stripe Checkout: from n/a through = 1.1.28...

CVE-2025-49908

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPClever WPC Countdown Timer for WooCommerce wpc-countdown-timer allows Stored XSS.This issue affects WPC Countdown Timer for WooCommerce: from n/a through = 3.1.4...

CVE-2025-58256

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jonathan Brinley DOAJ Export doaj-export allows Stored XSS.This issue affects DOAJ Export: from n/a through = 1.0.4...

CVE-2025-53493

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allows Stored XSS.This issue affects Mediawiki - MintyDocs Extension: from 1.43.X before 1.43.2...

CVE-2024-37920

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Repute InfoSystems ARForms Form Builder allows Reflected XSS.This issue affects ARForms Form Builder: from n/a through 1.6.7...

PT-2024-15340 · Nvidia · Nvidia Chatrtx

Name of the Vulnerable Software and Affected Versions: NVIDIA ChatRTX for Windows affected versions not specified Description: The issue is related to improper privilege management in the Chat RTX UI, where user inputs can alter the execution flow, potentially leading to information disclosure,...

CVE-2024-29796

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hot Themes Hot Random Image allows Stored XSS.This issue affects Hot Random Image: from n/a through 1.8.1...

NovelPlus 代码问题漏洞

NovelPlus is an application. An open source mobile social application and idea publishing platform. Novel-plus v3.6.0 suffers from a security vulnerability that stems from the vulnerability of Novel-plus v3.6.0 to server-side request forgery SSRF attacks via user-supplied crafted input...

CVE-2021-20565

IBM Cloud Pak for Security CP4S 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism. IBM X-Force ID: 199236...

BFuzz - Fuzzing Browsers (Chrome & Firefox)

BFuzz is an input based fuzzer tool which take .html as an input, open's up your browser with a new instance and pass multiple testcases generated by domato which is present in recurve folder of BFuzz, more over BFuzz is an automation which performs same task repeatedly. Run BFuzz...