Total
30719 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-23718 | 1 Page Loading Effects Project | 1 Page Loading Effects | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Esstat17 Page Loading Effects plugin <= 2.0.0 versions. | ||||
| CVE-2023-23717 | 1 Portfolio Slideshow Project | 1 Portfolio Slideshow | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in George Gecewicz Portfolio Slideshow plugin <= 1.13.0 versions. | ||||
| CVE-2023-23709 | 1 Wpjam Basic Project | 1 Wpjam Basic | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Denis WPJAM Basic plugin <= 6.2.1 versions. | ||||
| CVE-2023-23723 | 1 Winwar | 1 Wp Email Capture | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Email Capture plugin <= 3.9.3 versions. | ||||
| CVE-2023-23676 | 1 File Gallery Project | 1 File Gallery | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Bruno "Aesqe" Babic File Gallery plugin <= 1.8.5.3 versions. | ||||
| CVE-2023-23673 | 1 Themeist | 1 I Recommend This | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Harish Chouhan, Themeist I Recommend This plugin <= 3.8.3 versions. | ||||
| CVE-2023-23668 | 1 Givewp | 1 Givewp | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in GiveWP plugin <= 2.25.1 versions. | ||||
| CVE-2023-23650 | 1 Mainwp | 1 Code Snippets Extension | 2024-08-02 | 6.5 Medium |
| Auth. (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in MainWP MainWP Code Snippets Extension plugin <= 4.0.2 versions. | ||||
| CVE-2023-23677 | 1 Gtmetrix | 1 Gtmetrix | 2024-08-02 | 3.8 Low |
| Reflected Cross-Site Scripting (XSS) vulnerability in GTmetrix GTmetrix for WordPress plugin <= 0.4.5 versions. | ||||
| CVE-2023-23687 | 1 Youtube Shortcode Project | 1 Youtube Shortcode | 2024-08-02 | 6.5 Medium |
| Auth. Stored Cross-Site Scripting (XSS) vulnerability in Youtube shortcode <= 1.8.5 versions. | ||||
| CVE-2023-23682 | 1 Duplicator | 1 Ezp Maintenance Mode | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Snap Creek Software EZP Maintenance Mode plugin <= 1.0.1 versions. | ||||
| CVE-2023-23681 | 1 Webdevocean | 1 Image Hover Effects For Wpbakery Page Builder | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin <= 4.0 versions. | ||||
| CVE-2023-23674 | 1 Rvola | 1 Wp Original Media Path | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in RVOLA WP Original Media Path plugin <= 2.4.0 versions. | ||||
| CVE-2023-23701 | 1 Web Design Easy Sign Up Project | 1 Web Design Easy Sign Up | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Andrew @ Geeenville Web Design Easy Sign Up plugin <= 3.4.1 versions. | ||||
| CVE-2023-23664 | 1 Convertbox | 1 Convertbox Auto Embed | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ConvertBox ConvertBox Auto Embed WordPress plugin <= 1.0.19 versions. | ||||
| CVE-2023-23685 | 1 Radiustheme | 1 Portfolio | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in RadiusTheme Portfolio – WordPress Portfolio plugin <= 2.8.10 versions. | ||||
| CVE-2023-23670 | 1 Heateor | 1 Fancy Comments | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versions. | ||||
| CVE-2023-23675 | 1 Catchsquare | 1 Wp Smart Preloader | 2024-08-02 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Catchsquare WP Smart Preloader plugin <= 1.15 versions. | ||||
| CVE-2023-23636 | 1 Jellyfin | 1 Jellyfin | 2024-08-02 | 5.4 Medium |
| In Jellyfin 10.8.x through 10.8.3, the name of a playlist is vulnerable to stored XSS. This allows an attacker to steal access tokens from the localStorage of the victim. | ||||
| CVE-2023-23688 | 1 Sumo | 1 Social Share Boost | 2024-08-02 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Sumo Social Share Boost plugin <= 4.4 versions. | ||||