CWE-79 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (42958 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-23686	1 Simple Staff List Project	1 Simple Staff List	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Brett Shumaker Simple Staff List plugin <= 2.2.2 versions.
CVE-2023-23870	1 Wpdevart	1 Responsive Vertical Icon Menu	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in wpdevart Responsive Vertical Icon Menu plugin <= 1.5.8 versions.
CVE-2023-23981	1 Quantumcloud	1 Conversational Forms For Chatbot	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in QuantumCloud Conversational Forms for ChatBot plugin <= 1.1.6 versions.
CVE-2023-23982	1 Wpfrom Email Project	1 Wpfrom Email	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPGear.Pro WPFrom Email plugin <= 1.8.8 versions.
CVE-2023-23815	1 Multi-column Tag Map Project	1 Multi-column Tag Map	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Alan Jackson Multi-column Tag Map plugin <= 17.0.24 versions.
CVE-2023-23987	1 Wpeverest	1 User Registration	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPEverest User Registration plugin <= 2.3.0 versions.
CVE-2023-23972	1 Wpdevart	1 Social Like Box And Page	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Smplug-in Social Like Box and Page by WpDevArt plugin <= 0.8.39 versions.
CVE-2023-23980	1 Mailoptin	1 Mailoptin	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in MailOptin Popup Builder Team MailOptin plugin <= 1.2.54.0 versions.
CVE-2023-23996	1 Properfraction	1 Profilepress	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.3 versions.
CVE-2023-24001	1 Modal Dialog Project	1 Modal Dialog	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Yannick Lefebvre Modal Dialog plugin <= 3.5.9 versions.
CVE-2023-24004	1 Wpdevart	1 Download Image And Video Lightbox\, Image Popup	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart Image and Video Lightbox, Image PopUp plugin <= 2.1.5 versions.
CVE-2023-24002	1 Wpdevart	1 Youtube Embed\, Playlist And Popup	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart YouTube Embed, Playlist and Popup by WpDevArt plugin <= 2.6.3 versions.
CVE-2023-23898	1 Creativethemes	1 Blocksy Companion	2025-01-10	5.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeThemes Blocksy Companion plugin <= 1.8.67 versions.
CVE-2023-24383	1 Kibokolabs	1 Namaste\! Lms	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Namaste! LMS plugin <= 2.5.9.1 versions.
CVE-2023-24411	1 Bnecreative	1 Bne Testimonials	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Kerry Kline BNE Testimonials plugin <= 2.0.7 versions.
CVE-2023-24387	1 Wpdevart	1 Organization Chart	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart Organization chart plugin <= 1.4.4 versions.
CVE-2023-24378	1 Codeat	1 Glossary	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Codeat Glossary plugin <= 2.1.27 versions.
CVE-2023-23891	1 Oceanwp	1 Ocean Extra	2025-01-10	5.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in OceanWP Ocean Extra plugin <= 2.1.1 versions. Needs the OceanWP theme installed and activated.
CVE-2023-25062	1 Pinpoint	1 Pinpoint Booking System	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PINPOINT.WORLD Pinpoint Booking System plugin <= 2.9.9.2.8 versions.
CVE-2023-25059	1 Avalex	1 Avalex	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in avalex GmbH avalex – Automatically secure legal texts plugin <= 3.0.3 versions.

« first previous Page 1239 of 2148. next last »