Total
35377 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-18600 | 1 Ncrafts | 1 Formcraft | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The formcraft3 plugin before 3.4 for WordPress has stored XSS via the "New Form > Heading > Heading Text" field. | |||||
| CVE-2017-18599 | 1 Pinfinity Project | 1 Pinfinity | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Pinfinity theme before 2.0 for WordPress has XSS via the s parameter. | |||||
| CVE-2017-18598 | 1 Designmodo | 1 Qards | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Qards plugin through 2017-10-11 for WordPress has XSS via a remote document specified in the url parameter to html2canvasproxy.php. | |||||
| CVE-2017-18593 | 1 Updraftplus | 1 Updraftplus | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The updraftplus plugin before 1.13.5 for WordPress has XSS in rare cases where an attacker controls a string logged to a log file. | |||||
| CVE-2017-18590 | 1 Bestwebsoft | 1 Timesheet | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The timesheet plugin before 0.1.5 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18582 | 1 Time Sheets Project | 1 Time Sheets | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The time-sheets plugin before 1.5.2 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18581 | 1 Time Sheets Project | 1 Time Sheets | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The time-sheets plugin before 1.5.0 for WordPress has XSS via the old timesheet list. | |||||
| CVE-2017-18579 | 1 Dwbooster | 1 Corner Ad | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The corner-ad plugin before 1.0.8 for WordPress has XSS. | |||||
| CVE-2017-18578 | 1 Crafty Social Buttons Project | 1 Crafty Social Buttons | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS. | |||||
| CVE-2017-18577 | 1 Ibericode | 1 Mailchimp | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. | |||||
| CVE-2017-18576 | 1 Event Notifier Project | 1 Event Notifier | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The event-notifier plugin before 1.2.1 for WordPress has XSS via the loading animation. | |||||
| CVE-2017-18575 | 1 Newstatpress Project | 1 Newstatpress | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The newstatpress plugin before 1.2.5 for WordPress has multiple stored XSS issues. | |||||
| CVE-2017-18572 | 1 Sir | 1 Gnucommerce | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The gnucommerce plugin before 1.4.2 for WordPress has XSS. | |||||
| CVE-2017-18568 | 1 Mythemeshop | 1 My Wp Translate | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The my-wp-translate plugin before 1.0.4 for WordPress has XSS. | |||||
| CVE-2017-18567 | 1 Soflyy | 1 Wp All Import | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-all-import plugin before 3.4.6 for WordPress has XSS. | |||||
| CVE-2017-18566 | 1 Bestwebsoft | 1 User Role | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The user-role plugin before 1.5.6 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18565 | 1 Bestwebsoft | 1 Updater | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The updater plugin before 1.35 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18564 | 1 Bestwebsoft | 1 Sender | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The sender plugin before 1.2.1 for WordPress has multiple XSS issues. | |||||
| CVE-2017-18563 | 1 Swimordiesoftware | 1 Rsvp | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen. | |||||
| CVE-2017-18562 | 1 Bestwebsoft | 1 Error Log Viewer | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The error-log-viewer plugin before 1.0.6 for WordPress has multiple XSS issues. | |||||