Total
21765 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-9321 | 1 Wpmadeeasy | 1 Shortcode Factory | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The shortcode-factory plugin before 1.1.1 for WordPress has XSS via add_query_arg. | |||||
| CVE-2017-18536 | 1 Fullworks | 1 Stop User Enumeration | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS. | |||||
| CVE-2017-18554 | 1 Analytics Tracker Project | 1 Analytics Tracker | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The analytics-tracker plugin before 1.1.1 for WordPress has XSS via a search event. | |||||
| CVE-2016-10908 | 1 Codepeople | 1 Booking Calendar Contact Form | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. | |||||
| CVE-2017-18537 | 1 Bestwebsoft | 1 Visitors Online | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The visitors-online plugin before 1.0.0 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18541 | 1 Xakuro | 1 Xo Security | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The xo-security plugin before 1.5.3 for WordPress has XSS. | |||||
| CVE-2019-15053 | 1 Atlassian | 1 Html Include And Replace Macro | 2019-08-21 | 6.0 MEDIUM | 6.8 MEDIUM |
| The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element. | |||||
| CVE-2016-10900 | 1 Wpmanage | 1 Uji Countdown | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The uji-countdown plugin before 2.0.7 for WordPress has XSS. | |||||
| CVE-2017-18555 | 1 Mediaburst | 1 Booking Calendar | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The booking-sms plugin before 1.1.0 for WordPress has XSS. | |||||
| CVE-2017-18556 | 1 Bestwebsoft | 1 Google Analytics | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18557 | 1 Bestwebsoft | 1 Google Maps | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18558 | 1 Bestwebsoft | 1 Testimonials | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18560 | 1 Content Audit Project | 1 Content Audit | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The content-audit plugin before 1.9.2 for WordPress has XSS. | |||||
| CVE-2017-18542 | 1 Bestwebsoft | 1 Zendesk Help Center | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The zendesk-help-center plugin before 1.0.5 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18553 | 1 Ad Buttons Project | 1 Ad Buttons | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The ad-buttons plugin before 2.3.2 for WordPress has XSS. | |||||
| CVE-2017-18565 | 1 Bestwebsoft | 1 Updater | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The updater plugin before 1.35 for WordPress has multiple XSS issues. | |||||
| CVE-2019-15110 | 1 Wp Front End Profile Project | 1 Wp Front End Profile | 2019-08-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS. | |||||
| CVE-2019-14789 | 1 Custom 404 Pro Project | 1 Custom 404 Pro | 2019-08-20 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Custom 404 Pro plugin 3.2.8 for WordPress has XSS via the wp-admin/admin.php?page=c4p-main page parameter. | |||||
| CVE-2019-14784 | 1 Codepeople | 1 Cp Contact Form With Paypal | 2019-08-20 | 4.3 MEDIUM | 6.1 MEDIUM |
| The "CP Contact Form with PayPal" plugin before 1.2.98 for WordPress has XSS in CSS edition. | |||||
| CVE-2019-1203 | 1 Microsoft | 2 Sharepoint Enterprise Server, Sharepoint Server | 2019-08-20 | 3.5 LOW | 5.4 MEDIUM |
| A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. | |||||