Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.5

    MEDIUM
    CVE-2024-53748

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Lin WP Mermaid allows Stored XSS.This issue affects WP Mermaid: from n/a through 1.0.2.... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 6.5

    MEDIUM
    CVE-2024-53747

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NuttTaro Video Player for WPBakery allows Stored XSS.This issue affects Video Player for WPBakery: from n/a through 1.0.1.... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 6.5

    MEDIUM
    CVE-2024-53746

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs Elementor Button Plus allows Stored XSS.This issue affects Elementor Button Plus: from n/a through 1.3.3.... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 6.5

    MEDIUM
    CVE-2024-53745

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 코스모스팜 – Cosmosfarm 소셜 공유 버튼 By 코스모스팜 allows Stored XSS.This issue affects 소셜 공유 버튼 By 코스모스팜: from n/a through 1.9.... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 6.5

    MEDIUM
    CVE-2024-53744

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Skybootstrap Elementor Image Gallery Plugin allows Stored XSS.This issue affects Elementor Image Gallery Plugin: from n/a through 1.0.3.... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 6.5

    MEDIUM
    CVE-2024-53743

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs Countdown Timer for Elementor allows Stored XSS.This issue affects Countdown Timer for Elementor: from n/a through 1.3.6.... Read more

    Affected Products : countdown_timer_for_elementor
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 7.1

    HIGH
    CVE-2024-53742

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Prism I.T. Systems Multilevel Referral Affiliate Plugin for WooCommerce allows Reflected XSS.This issue affects Multilevel Referral Affiliate Plugin for ... Read more

    Affected Products :
    • Published: Dec. 01, 2024
    • Modified: Dec. 01, 2024

  • 7.5

    HIGH
    CVE-2024-45520

    WithSecure Atlant (formerly F-Secure Atlant) 1.0.35-1 allows a remote Denial of Service because of memory corruption during scanning of a PE32 file.... Read more

    Affected Products : atlant
    • Published: Dec. 01, 2024
    • Modified: Dec. 02, 2024

  • 6.5

    MEDIUM
    CVE-2024-53786

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Codeless Cowidgets – Elementor Addons allows Stored XSS.This issue affects Cowidgets – Elementor Addons: from n/a through 1.2.0.... Read more

    • Published: Nov. 30, 2024
    • Modified: Feb. 05, 2025

  • 7.1

    HIGH
    CVE-2024-53778

    Cross-Site Request Forgery (CSRF) vulnerability in Essential Marketer Essential Breadcrumbs allows Stored XSS.This issue affects Essential Breadcrumbs: from n/a through 1.1.1.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53774

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sparkle WP Sparkle Elementor Kit allows DOM-Based XSS.This issue affects Sparkle Elementor Kit: from n/a through 2.0.9.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53773

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Praca.Pl sp. Z o.O. Znajdź Pracę z Praca.Pl allows DOM-Based XSS.This issue affects Znajdź Pracę z Praca.Pl: from n/a through 2.2.3.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53772

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PickPlugins Mail Picker allows DOM-Based XSS.This issue affects Mail Picker: from n/a through 1.0.14.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53771

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sergio Micó SimpleSchema allows DOM-Based XSS.This issue affects SimpleSchema: from n/a through 1.7.6.9.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53767

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pixobe Pixobe Cartography allows DOM-Based XSS.This issue affects Pixobe Cartography: from n/a through 1.0.1.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53766

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Devnex Devnex Addons For Elementor allows DOM-Based XSS.This issue affects Devnex Addons For Elementor: from n/a through 1.0.8.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53764

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SoftHopper Softtemplates For Elementor allows DOM-Based XSS.This issue affects Softtemplates For Elementor: from n/a through 1.0.8.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53763

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rejuan Ahamed Best Addons for Elementor allows Stored XSS.This issue affects Best Addons for Elementor: from n/a through 1.0.5.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53760

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Capitalize My Title allows Stored XSS.This issue affects Capitalize My Title: from n/a through 0.5.3.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024

  • 6.5

    MEDIUM
    CVE-2024-53758

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Lin WP MathJax allows Stored XSS.This issue affects WP MathJax: from n/a through 1.0.1.... Read more

    Affected Products :
    • Published: Nov. 30, 2024
    • Modified: Nov. 30, 2024
Showing 20 of 291564 Results