CWE-79 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (42958 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-29170	1 Piwebsolution	1 Product Enquiry For Woocommerce	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product Enquiry for WooCommerce, WooCommerce product catalog plugin <= 2.2.12 versions.
CVE-2023-29388	1 Implecode	1 Product Catalog Simple	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in impleCode Product Catalog Simple plugin <= 1.6.17 versions.
CVE-2022-45358	1 Colorlib	1 Activello	2025-01-10	5.4 Medium
Auth. (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Silkalns Activello theme <= 1.4.4 versions.
CVE-2022-43480	1 Magneticlab	1 Homepage Pop-up	2025-01-10	4.8 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Magneticlab Sàrl Homepage Pop-up plugin <= 1.2.5 versions.
CVE-2022-43458	1 Codetides	1 Advanced Floating Content	2025-01-10	4.1 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Code Tides Advanced Floating Content plugin <= 1.2.1 versions.
CVE-2022-44734	1 Bestwebsoft	1 Car Rental	2025-01-10	4.8 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in BestWebSoft Car Rental by BestWebSoft plugin <= 1.1.2 versions.
CVE-2022-45849	1 Colorlib	1 Activello Theme	2025-01-10	5.4 Medium
Auth. (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Silkalns Activello theme <= 1.4.4 versions.
CVE-2022-45838	1 Reputeinfosystems	1 Arforms Form Builder	2025-01-10	6.1 Medium
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Repute InfoSystems ARForms Form Builder plugin <= 1.5.5 versions.
CVE-2022-45839	1 Webhelpagency	1 Wha Puzzle	2025-01-10	5.4 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WHA WHA Puzzle plugin <= 1.0.9 versions.
CVE-2022-44632	1 Content-repeater Project	1 Content-repeater	2025-01-10	4.8 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Denis Buka Content Repeater – Custom Posts Simplified plugin <= 1.1.13 versions.
CVE-2022-44631	1 1app	1 1app Business Forms	2025-01-10	4.8 Medium
Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in 1app Technologies, Inc 1app Business Forms plugin <= 1.0.0 versions.
CVE-2022-44582	1 Apptivo	1 Apptivo Business Site Crm	2025-01-10	4.8 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Apptivo Apptivo Business Site CRM plugin <= 3.0.12 versions.
CVE-2024-50339	1 Glpi-project	1 Glpi	2025-01-10	5.3 Medium
GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to version 10.0.17, an unauthenticated user can retrieve all the sessions IDs and use them to steal any valid session. Version 10.0.17 contains a patch for this issue.
CVE-2022-44594	1 Codebangers	1 All In One Time Clock Lite	2025-01-10	4.8 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Codebangers All in One Time Clock Lite plugin <= 1.3.320 versions.
CVE-2022-47435	1 Wp-olivecart Project	1 Wp-olivecart	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Olive Design WP-OliveCart plugin <= 1.1.3 versions.
CVE-2023-24386	1 Ai Contact Us Form Project	1 Ai Contact Us Form	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Karishma Arora AI Contact Us Form plugin <= 1.0 versions.
CVE-2023-24404	1 Rarathemes	1 Vryasage Marketing Performance	2025-01-10	7.1 High
Reflected Cross-Site Scripting (XSS) vulnerability in VryaSage Marketing Performance plugin <= 2.0.0 versions.
CVE-2022-45361	1 0mk Shortener Project	1 0mk Shortener	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Boris Kuzmanov 0mk Shortener plugin <= 0.2 versions.
CVE-2023-23832	1 Ultimate Wp Query Search Filter Project	1 Ultimate Wp Query Search Filter	2025-01-10	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in TC Ultimate WP Query Search Filter plugin <= 1.0.10 versions.
CVE-2023-23717	1 Portfolio Slideshow Project	1 Portfolio Slideshow	2025-01-10	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in George Gecewicz Portfolio Slideshow plugin <= 1.13.0 versions.

« first previous Page 1241 of 2148. next last »