CWE-79 CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (44266 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-24002	1 Wpdevart	1 Youtube Embed\, Playlist And Popup	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart YouTube Embed, Playlist and Popup by WpDevArt plugin <= 2.6.3 versions.
CVE-2023-23898	1 Creativethemes	1 Blocksy Companion	2025-01-10	5.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeThemes Blocksy Companion plugin <= 1.8.67 versions.
CVE-2023-24383	1 Kibokolabs	1 Namaste\! Lms	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Namaste! LMS plugin <= 2.5.9.1 versions.
CVE-2023-24411	1 Bnecreative	1 Bne Testimonials	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Kerry Kline BNE Testimonials plugin <= 2.0.7 versions.
CVE-2023-24387	1 Wpdevart	1 Organization Chart	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPdevart Organization chart plugin <= 1.4.4 versions.
CVE-2023-24378	1 Codeat	1 Glossary	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Codeat Glossary plugin <= 2.1.27 versions.
CVE-2023-23891	1 Oceanwp	1 Ocean Extra	2025-01-10	5.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in OceanWP Ocean Extra plugin <= 2.1.1 versions. Needs the OceanWP theme installed and activated.
CVE-2023-25062	1 Pinpoint	1 Pinpoint Booking System	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in PINPOINT.WORLD Pinpoint Booking System plugin <= 2.9.9.2.8 versions.
CVE-2023-25059	1 Avalex	1 Avalex	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in avalex GmbH avalex – Automatically secure legal texts plugin <= 3.0.3 versions.
CVE-2023-24398	1 Snapcreek	1 Ezp Coming Soon Page	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Snap Creek Software EZP Coming Soon Page plugin <= 1.0.7.3 versions.
CVE-2023-25022	1 Kibokolabs	1 Watu Quiz	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Watu Quiz plugin <= 3.3.8 versions.
CVE-2023-25027	1 Kibokolabs	1 Chained Quiz	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Chained Quiz plugin <= 1.3.2.5 versions.
CVE-2023-25024	1 Icegram	1 Icegram Collect	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Icegram Icegram Collect plugin <= 1.3.8 versions.
CVE-2023-25031	1 Kibokolabs	1 Arigato Autoresponder And Newsletter	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1 versions.
CVE-2023-25020	1 Kibokolabs	1 Arigato Autoresponder And Newsletter	2025-01-10	7.1 High
Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin <= 2.7.1.1 versions.
CVE-2023-25041	1 Cththemes	1 Monolit	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Cththemes Monolit theme <= 2.0.6 versions.
CVE-2023-28993	1 Albo Pretorio On Line Project	1 Albo Pretorio On Line	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ignazio Scimone Albo Pretorio On Line plugin <= 4.6.1 versions.
CVE-2023-23885	1 Fullworksplugins	1 Quick Contact Form	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Contact Form plugin <= 8.0.3.1 versions.
CVE-2023-23994	1 Auto Hide Admin Bar Project	1 Auto Hide Admin Bar	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Marcel Bootsman Auto Hide Admin Bar plugin <= 1.6.1 versions.
CVE-2023-25464	1 Streamweasels	1 Twitch Player	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in StreamWeasels Twitch Player plugin <= 2.1.0 versions.

« first previous Page 1312 of 2214. next last »