Latest CVE Feed
-
6.5
MEDIUMCVE-2024-51905
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ravi & Suma RSV PDF Preview allows Stored XSS.This issue affects RSV PDF Preview: from n/a through 1.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51936
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Henry ESB Testimonials allows Stored XSS.This issue affects ESB Testimonials: from n/a through 1.0.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51847
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in giovanebribeiro WP PagSeguro Payments allows Stored XSS.This issue affects WP PagSeguro Payments: from n/a through 1.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51878
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joey Straile AchillesTheme-shortcodes allows DOM-Based XSS.This issue affects AchillesTheme-shortcodes: from n/a through 0.1.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51911
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ketan Patel Featured product by category name allows DOM-Based XSS.This issue affects Featured product by category name: from n/a through 1.1.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51914
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gopi Ramasamy drop in image slideshow gallery allows DOM-Based XSS.This issue affects drop in image slideshow gallery: from n/a through 12.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
5.3
MEDIUMCVE-2024-52395
Missing Authorization vulnerability in QunatumCloud Floating Buttons for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Floating Buttons for WooCommerce: from n/a through 2.8.8.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
7.1
HIGHCVE-2024-52421
Cross-Site Request Forgery (CSRF) vulnerability in wp-buy WP Popup Window Maker allows Stored XSS.This issue affects WP Popup Window Maker: from n/a through 2.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51857
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Olympus Themes Olympus Shortcodes allows DOM-Based XSS.This issue affects Olympus Shortcodes: from n/a through 1.0.4.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
5.4
MEDIUMCVE-2022-47424
Cross-Site Request Forgery (CSRF) vulnerability in Repute InfoSystems ARMember, Repute InfoSystems ARMember Premium allows Cross-Site Request Forgery.This issue affects ARMember: from n/a through 4.0.5; ARMember Premium: from n/a before 6.7.1.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51855
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Productineer Redirecter allows DOM-Based XSS.This issue affects Redirecter: from n/a through 1.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51851
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in saleh attari best bootstrap widgets for elementor allows DOM-Based XSS.This issue affects best bootstrap widgets for elementor: from n/a through 1.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51859
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bamboo Mcr Bamboo Enquiries allows Stored XSS.This issue affects Bamboo Enquiries: from n/a through 1.9.3.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51861
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in duogeek EventPress allows Stored XSS.This issue affects EventPress: from n/a through 1.0.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51865
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in N.O.U.S. Open Useful and Simple Simple Social Share Block allows Stored XSS.This issue affects Simple Social Share Block: from n/a through 1.0.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51868
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DuoGeek DuoGeek Blocks allows Stored XSS.This issue affects DuoGeek Blocks: from n/a through .1.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51871
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Luzuk Luzuk Team allows Stored XSS.This issue affects Luzuk Team: from n/a through 0.1.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51873
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in matorel Multi-day Booking Calendar allows DOM-Based XSS.This issue affects Multi-day Booking Calendar: from n/a through 1.0.1.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51875
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nazmul Ahsan MDC YouTube Downloader allows DOM-Based XSS.This issue affects MDC YouTube Downloader: from n/a through 3.0.0.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024
-
6.5
MEDIUMCVE-2024-51877
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in straightvisions GmbH SV Forms allows DOM-Based XSS.This issue affects SV Forms: from n/a through 2.0.05.... Read more
Affected Products :- Published: Nov. 19, 2024
- Modified: Nov. 19, 2024