• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-79

CVE-2022-0737

February 23, 2023 by

The Text Hover WordPress plugin before 4.2 does not sanitize and escape the text to hover, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

CVE-2022-0600

February 23, 2023 by

The Conference Scheduler WordPress plugin before 2.4.3 does not sanitize and escape the tab parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting.

CVE-2022-0601

February 23, 2023 by

The Countdown, Coming Soon, Maintenance WordPress plugin before 2.2.9 does not sanitize and escape the post parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.

CVE-2022-0602

February 23, 2023 by

Cross-site Scripting (XSS) – DOM in GitHub repository tastyigniter/tastyigniter prior to 3.3.0.

CVE-2022-0612

February 23, 2023 by

Cross-site Scripting (XSS) – Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0619

February 23, 2023 by

The Database Peek WordPress plugin through 1.2 does not sanitize and escape the match parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 2152
  • Go to page 2153
  • Go to page 2154
  • Go to page 2155
  • Go to page 2156
  • Interim pages omitted …
  • Go to page 2216
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE