Security Vulnerabilities, CVEs, related to CWE-79 CVSS score >= 7
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BlueGlass Jobs for WordPress allows Reflected XSS.This issue affects Jobs for WordPress: from n/a through 2.7.5.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-15
Updated
2024-04-15
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PineWise WP Google Analytics Events allows Reflected XSS.This issue affects WP Google Analytics Events: from n/a through 2.8.0.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-15
Updated
2024-04-15
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in KaizenCoders Short URL allows Reflected XSS.This issue affects Short URL: from n/a through 1.6.8.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-15
Updated
2024-04-15
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michael Schuppenies EZ Form Calculator allows Reflected XSS.This issue affects EZ Form Calculator: from n/a through 2.14.0.3.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-15
Updated
2024-04-15
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themify Post Type Builder (PTB) allows Reflected XSS.This issue affects Post Type Builder (PTB): from n/a through 2.0.8.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-09
Updated
2024-04-09
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebinarPress allows Reflected XSS.This issue affects WebinarPress: from n/a through 1.33.9.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-07
Updated
2024-04-08
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ELEXtensions ELEX WooCommerce Dynamic Pricing and Discounts allows Reflected XSS.This issue affects ELEX WooCommerce Dynamic Pricing and Discounts: from n/a through 2.1.2.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-04-07
Updated
2024-04-08
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebDorado SpiderFAQ allows Reflected XSS.This issue affects SpiderFAQ: from n/a through 1.3.2.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stephanie Leary Convert Post Types allows Reflected XSS.This issue affects Convert Post Types: from n/a through 1.4.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Katz Web Services, Inc. Contact Form 7 Newsletter allows Reflected XSS.This issue affects Contact Form 7 Newsletter: from n/a through 2.2.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DiSo Development Team OpenID allows Reflected XSS.This issue affects OpenID: from n/a through 3.6.1.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yooslider Yoo Slider allows Reflected XSS.This issue affects Yoo Slider: from n/a through 2.1.1.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kanban for WordPress Kanban Boards for WordPress allows Reflected XSS.This issue affects Kanban Boards for WordPress: from n/a through 2.5.21.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stephan Spencer SEO Title Tag allows Reflected XSS.This issue affects SEO Title Tag: from n/a through 3.5.9.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Philip M. Hofer (Frumph) Comic Easel allows Reflected XSS.This issue affects Comic Easel: from n/a through 1.15.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SparkWeb Interactive, Inc. Custom Field Bulk Editor allows Reflected XSS.This issue affects Custom Field Bulk Editor: from n/a through 1.9.1.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 荒野无灯 Hacklog Down As PDF allows Reflected XSS.This issue affects Hacklog Down As PDF: from n/a through 2.3.6.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-11
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joel Starnes pageMash > Page Management allows Reflected XSS.This issue affects pageMash > Page Management: from n/a through 1.3.0.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rob Marsh, SJ Post-Plugin Library allows Reflected XSS.This issue affects Post-Plugin Library: from n/a through 2.6.2.1.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pulsar Web Design Weekly Class Schedule allows Reflected XSS.This issue affects Weekly Class Schedule: from n/a through 3.19.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Scientech It Solution Appointment Calendar allows Reflected XSS.This issue affects Appointment Calendar: from n/a through 2.9.6.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michael Simpson Add Shortcodes Actions And Filters allows Reflected XSS.This issue affects Add Shortcodes Actions And Filters: from n/a through 2.10.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Toast Plugins Sticky Anything.This issue affects Sticky Anything: from n/a through 2.1.5.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Responsive Image Gallery, Gallery Album allows Reflected XSS.This issue affects Responsive Image Gallery, Gallery Album: from n/a through 2.0.3.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-31
Updated
2024-04-01
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vsourz Digital All In One Redirection allows Stored XSS.This issue affects All In One Redirection: from n/a through 2.2.0.
Max CVSS
7.1
EPSS Score
0.04%
Published
2024-03-29
Updated
2024-04-01