CVE-2025-23473

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Punit Bhalodiya Killer Theme Options killer-theme-options allows Reflected XSS.This issue affects Killer Theme Options: from n/a through = 2.0...

EUVD-2019-13118

Malware in sbrugna...

CVE-2025-48241

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Soft8Soft LLC Verge3D verge3d allows Reflected XSS.This issue affects Verge3D: from n/a through = 4.9.3...

CVE-2025-25114

CVE-2025-25114 affects the WordPress plugin WordPress User Roles (WordPress User Roles plugin) versions <= 1.0, with a Reflected Cross-Site Scripting (XSS) flaw. The initial record attributes this to Improper Neutralization of Input During Web Page Generation, enabling reflected XSS. The CVSS ...

PT-2023-14692 · Eyoucms · Eyoucms

Name of the Vulnerable Software and Affected Versions: EyouCMS versions 1.6.0 and earlier Description: A reflected-XSS issue was discovered in the article publish component. The issue is related to the cookie ENV LIST URL. Recommendations: For EyouCMS versions 1.6.0 and earlier, update to a versi...

Incorrect handling of self signed certificates in OpenFire XMPP Server

Incorrect handling of self signed certificates in OpenFire XMPP Server Affected software: OpenFire XMPP server Affected versions: 3.9.3 and earlier Vulnerabilities addressed: CVE-2014-3451, CVE-2015-2080 Openfire is a real time collaboration RTC server licensed under the Open Source Apache Licens...