CVE-2024-46970
https://notcve.org/view.php?id=CVE-2024-46970
In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible En JetBrains IntelliJ IDEA antes de 2024.1 era posible la inyección de HTML a través del nombre del proyecto • https://www.jetbrains.com/privacy-security/issues-fixed • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-8776 – INTUMIT SmartRobot - Cross-site Scripting
https://notcve.org/view.php?id=CVE-2024-8776
SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing unautheticated remote attackers to inject JavaScript code to the parameter for Reflected Cross-site Scripting attacks. • https://www.twcert.org.tw/en/cp-139-8070-d10bc-2.html https://www.twcert.org.tw/tw/cp-132-8069-73393-1.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-44062 – WordPress Custom Field Template plugin <= 2.6.5 - Cross Site Scripting (XSS) vulnerability
https://notcve.org/view.php?id=CVE-2024-44062
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hiroaki Miyashita Custom Field Template allows Stored XSS.This issue affects Custom Field Template: from n/a through 2.6.5. • https://patchstack.com/database/vulnerability/custom-field-template/wordpress-custom-field-template-plugin-2-6-5-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-8867 – Perfex CRM Parameter Clients.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8867
The manipulation of the argument message leads to cross site scripting. ... Durch das Manipulieren des Arguments message mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. • https://bytium.com/stored-cross-site-scripting-xss-vulnerability-in-perfex-crm https://vuldb.com/? • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2024-8866 – AutoCMS robot.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8866
The manipulation of the argument sidebar leads to cross site scripting. ... Mittels Manipulieren des Arguments sidebar mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. • https://github.com/Hebing123/cve/issues/68 https://vuldb.com/? • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •