12 matches found
CVE-2021-22503
Possible Improper Neutralization of Input During Web Page Generation Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.3.0000...
EUVD-2025-24776
Malicious code in bioql PyPI...
CVE-2024-52492
CVE-2024-52492 details a Stored Cross-Site Scripting (XSS) flaw in the WordPress plugin Image horizontal reel scroll slideshow (versions
CVE-2024-51663
CVE-2024-51663 is an XSS vulnerability in the WordPress plugin Bricksable for Bricks Builder (affected: Bricksable for Bricks Builder,
CVE-2024-49651 WordPress WooCommerce Maintenance Mode plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Royal WooCommerce Maintenance Mode woocommerce-maintenance-mode allows Reflected XSS.This issue affects WooCommerce Maintenance Mode: from n/a through = 2.0.1...
CVE-2024-50445
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in merkulove Selection Lite selection-lite allows Stored XSS.This issue affects Selection Lite: from n/a through = 1.13...
CVE-2024-48041
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CreativeMindsSolutions CM Tooltip Glossary enhanced-tooltipglossary allows Stored XSS.This issue affects CM Tooltip Glossary: from n/a through = 4.3.9...
CVE-2024-47847 Various XSSes found in Cargo
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting XSS.This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1...
CVE-2024-43988
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in digitalnature Mystique allows Stored XSS.This issue affects Mystique: from n/a through 2.5.7...
CVE-2024-43967
CVE-2024-43967 concerns the WP Testimonial Widget. The vulnerability is a stored XSS caused by improper neutralization of input during web page generation, affecting WP Testimonial Widget versions from n/a up to and including 3.1. The exploit requires an authenticated Administrator+ permission. N...
CVE-2024-39626
CVE-2024-39626 affects WordPress Pretty Simple Popup Builder; Stored XSS due to Improper Neutralization of Input During Web Page Generation. Affected: plugin Pretty Simple Popup Builder
CVE-2021-3780
peertube is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...