CWE-79 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (46029 CVEs found)

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-25798	1 Olevmedia	1 Olevmedia Shortcodes	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Olevmedia Olevmedia Shortcodes plugin <= 1.1.9 versions.
CVE-2023-23820	1 Properfraction	1 Profilepress	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.4 versions.
CVE-2023-23874	1 Metaphorcreations	1 Ditty	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Metaphor Creations Ditty plugin <= 3.0.32 versions.
CVE-2023-23876	1 Tms-outsource	1 Wpdatatables	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in TMS-Plugins wpDataTables plugin <= 2.1.49 versions.
CVE-2023-25979	1 Total-soft	1 Video Gallery	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Video Gallery by Total-Soft Video Gallery plugin <= 1.7.6 versions.
CVE-2023-22683	1 Clio	1 Clio Grow	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Themis Solutions, Inc. Clio Grow plugin <= 1.0.0 versions.
CVE-2023-23785	1 Exquisite Paypal Donation Project	1 Exquisite Paypal Donation	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in DgCult Exquisite PayPal Donation plugin <= v2.0.0 versions.
CVE-2023-23809	1 Finviz	1 Stock Market Charts From Finviz	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Moris Dov Stock market charts from finviz plugin <= 1.0.1 versions.
CVE-2023-23808	1 Sponsors Carousel Project	1 Sponsors Carousel	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Sergey Panasenko Sponsors Carousel plugin <= 4.02 versions.
CVE-2023-23875	1 Bing Site Verification Plugin Using Meta Tag Project	1 Bing Site Verification Plugin Using Meta Tag	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Himanshu Bing Site Verification plugin using Meta Tag plugin <= 1.0 versions.
CVE-2023-23830	1 Properfraction	1 Profilepress	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team ProfilePress plugin <= 4.5.4 versions.
CVE-2023-25962	1 Oxilab	1 Accordions	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Biplob Adhikari Accordion – Multiple Accordion or FAQs Builder plugin <= 2.3.0 versions.
CVE-2022-45818	1 Essentialplugin	1 Hero Banner Ultimate	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WP OnlineSupport, Essential Plugin Hero Banner Ultimate plugin <= 1.3.4 versions.
CVE-2023-26016	1 Simple Portfolio Gallery Project	1 Simple Portfolio Gallery	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Tauhidul Alam Simple Portfolio Gallery plugin <= 0.1 versions.
CVE-2023-26012	1 Custom Login Page Project	1 Custom Login Page	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Denzel Chia \| Phire Design Custom Login Page plugin <= 2.0 versions.
CVE-2023-25458	1 Gmo	1 Typesquare Webfonts For Conoha	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GMO Internet Group, Inc. TypeSquare Webfonts for ConoHa plugin <= 2.0.3 versions.
CVE-2023-25977	1 9seeds	1 Cpt - Speakers	2025-01-09	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 9seeds.Com CPT – Speakers plugin <= 1.1 versions.
CVE-2023-25982	1 Simple Youtube Responsive Project	1 Simple Youtube Responsive	2025-01-09	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Eirudo Simple YouTube Responsive plugin <= 2.5 versions.
CVE-2023-25961	1 Catchthemes	1 Darcie	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Catch Themes Darcie theme <= 1.1.5 versions.
CVE-2022-47449	1 Rextheme	1 Cart Lift - Abandoned Cart Recovery For Woocommerce And Edd	2025-01-09	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in RexTheme Cart Lift – Abandoned Cart Recovery for WooCommerce and EDD plugin <= 3.1.5 versions.

« first previous Page 1516 of 2302. next last »