CWE-79 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (44413 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-45814	1 Wp Calendar Project	1 Wp Calendar	2025-02-19	5.4 Medium
Stored Cross-Site Scripting (XSS) vulnerability in Fabian von Allmen WP Calendar plugin <= 1.5.3 versions.
CVE-2023-25064	1 Wp Htpasswd Project	1 Wp Htpasswd	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Matteo Candura WP htpasswd plugin <= 1.7 versions.
CVE-2023-22679	1 Wp Better Emails Project	1 Wp Better Emails	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nicolas Lemoine WP Better Emails plugin <= 0.4 versions.
CVE-2022-41831	1 Wp Glossary Project	1 Wp Glossary	2025-02-19	5.4 Medium
Auth. (contributor+) Cross-Site Scripting vulnerability in TCBarrett WP Glossary plugin <= 3.1.2 versions.
CVE-2023-22715	1 Wp-commentnavi Project	1 Wp-commentnavi	2025-02-19	5.9 Medium
Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Lester 'GaMerZ' Chan WP-CommentNavi plugin <= 1.12.1 versions.
CVE-2023-23728	1 Winwar	1 Wp Flipclock	2025-02-19	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Flipclock plugin <= 1.7.4 versions.
CVE-2023-23722	1 Winwar	1 Wp Ebay Product Feeds	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Winwar Media WP eBay Product Feeds plugin <= 3.3.1 versions.
CVE-2022-47145	1 Blockonomics	1 Blockonomics	2025-02-19	7.1 High
Reflected Cross-Site Scripting (XSS) vulnerability in Blockonomics WordPress Bitcoin Payments – Blockonomics plugin <= 3.5.7 versions.
CVE-2023-26008	1 Top 10 - Popular Posts Project	1 Top 10 - Popular Posts	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Ajay D'Souza Top 10 – Popular posts plugin for WordPress plugin <= 3.2.4 versions.
CVE-2022-46848	1 Themeisle	1 Visualizer	2025-02-19	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Themeisle Visualizer: Tables and Charts Manager for WordPress plugin <= 3.9.1 versions.
CVE-2022-46855	1 Wpdarko	1 Responsive Pricing Table	2025-02-19	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WP Darko Responsive Pricing Table plugin <= 5.1.6 versions.
CVE-2022-47596	1 Jeffrey-wp	1 Media Library Categories	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Jeffrey-WP Media Library Categories plugin <= 1.9.9 versions.
CVE-2023-23670	1 Heateor	1 Fancy Comments	2025-02-19	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versions.
CVE-2023-23675	1 Catchsquare	1 Wp Smart Preloader	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Catchsquare WP Smart Preloader plugin <= 1.15 versions.
CVE-2023-23677	1 Gtmetrix	1 Gtmetrix	2025-02-19	3.8 Low
Reflected Cross-Site Scripting (XSS) vulnerability in GTmetrix GTmetrix for WordPress plugin <= 0.4.5 versions.
CVE-2023-25040	1 Getshortcodes	1 Shortcodes Ultimate	2025-02-19	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Vova Anokhin WordPress Shortcodes Plugin — Shortcodes Ultimate plugin <= 5.12.6 versions.
CVE-2023-23685	1 Radiustheme	1 Portfolio	2025-02-19	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in RadiusTheme Portfolio – WordPress Portfolio plugin <= 2.8.10 versions.
CVE-2023-23977	1 Heateor	1 Social Comments	2025-02-19	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments plugin <= 1.6.1 versions.
CVE-2023-26536	1 Followmedarling	1 Spotify-play-button-for-wordpress	2025-02-19	6.5 Medium
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Jonk @ Follow me Darling Sp*tify Play Button for WordPress plugin <= 2.05 versions.
CVE-2023-23971	1 Codepeople	1 Wp Time Slots Booking Form	2025-02-19	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CodePeople WP Time Slots Booking Form plugin <= 1.1.81 versions.

« first previous Page 1216 of 2221. next last »