Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cms Tag: xss Clear
ID Title
CVE-2026-6820 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6820)
cross-site scripting in wordpress (CVE-2026-6820). Risk of unauthorized operations or information disclosure.
CVE-2026-6740 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6740)
cross-site scripting in wordpress (CVE-2026-6740). Risk of unauthorized operations or information disclosure.
CVE-2026-6459 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6459)
cross-site scripting in wordpress (CVE-2026-6459). Risk of unauthorized operations or information disclosure.
CVE-2026-6818 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6818)
cross-site scripting in wordpress (CVE-2026-6818). Risk of unauthorized operations or information disclosure.
CVE-2026-6742 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6742)
cross-site scripting in wordpress (CVE-2026-6742). Risk of unauthorized operations or information disclosure.
CVE-2025-14785 Cross-Site Scripting (XSS) in wordpress (CVE-2025-14785)
cross-site scripting in wordpress (CVE-2025-14785). Risk of unauthorized operations or information disclosure. Exploitable via ``seedprodnestedmenuwidget``.
CVE-2026-10570 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10570)
cross-site scripting in wordpress (CVE-2026-10570). Risk of unauthorized operations or information disclosure.
CVE-2026-11798 Cross-Site Scripting (XSS) in wordpress (CVE-2026-11798)
cross-site scripting in wordpress (CVE-2026-11798). Risk of unauthorized operations or information disclosure.
CVE-2026-12041 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12041)
cross-site scripting in wordpress (CVE-2026-12041). Risk of unauthorized operations or information disclosure.
CVE-2026-11328 Cross-Site Scripting (XSS) in wordpress (CVE-2026-11328)
cross-site scripting in wordpress (CVE-2026-11328). Risk of unauthorized operations or information disclosure.
CVE-2026-12154 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12154)
cross-site scripting in wordpress (CVE-2026-12154). Risk of unauthorized operations or information disclosure.
CVE-2026-9756 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9756)
cross-site scripting in wordpress (CVE-2026-9756). Risk of unauthorized operations or information disclosure.
CVE-2026-4804 Cross-Site Scripting (XSS) in wordpress (CVE-2026-4804)
cross-site scripting in wordpress (CVE-2026-4804). Risk of unauthorized operations or information disclosure.
CVE-2026-9148 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9148)
cross-site scripting in wordpress (CVE-2026-9148). Risk of unauthorized operations or information disclosure.
CVE-2026-8351 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8351)
cross-site scripting in wordpress (CVE-2026-8351). Risk of unauthorized operations or information disclosure.
CVE-2026-9626 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9626)
cross-site scripting in wordpress (CVE-2026-9626). Risk of unauthorized operations or information disclosure.
CVE-2026-8892 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8892)
cross-site scripting in wordpress (CVE-2026-8892). Risk of unauthorized operations or information disclosure.
CVE-2026-8489 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8489)
cross-site scripting in wordpress (CVE-2026-8489). Risk of unauthorized operations or information disclosure.
CVE-2026-13040 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13040)
cross-site scripting in wordpress (CVE-2026-13040). Risk of unauthorized operations or information disclosure.
CVE-2026-12731 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12731)
cross-site scripting in wordpress (CVE-2026-12731). Risk of unauthorized operations or information disclosure.
CVE-2026-12734 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12734)
cross-site scripting in wordpress (CVE-2026-12734). Risk of unauthorized operations or information disclosure.
CVE-2026-27402 Cross-Site Scripting (XSS) in wordpress (CVE-2026-27402)
cross-site scripting in wordpress (CVE-2026-27402). Risk of unauthorized operations or information disclosure.
CVE-2025-69156 Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
CVE-2025-69155 Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
CVE-2025-69154 Cross-Site Scripting (XSS) in wordpress (CVE-2025-69154)
cross-site scripting in wordpress (CVE-2025-69154). Risk of unauthorized operations or information disclosure.
CVE-2025-69152 Cross-Site Scripting (XSS) in wordpress (CVE-2025-69152)
cross-site scripting in wordpress (CVE-2025-69152). Risk of unauthorized operations or information disclosure.
CVE-2026-13252 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13252)
cross-site scripting in wordpress (CVE-2026-13252). Risk of unauthorized operations or information disclosure.
CVE-2026-10104 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10104)
cross-site scripting in wordpress (CVE-2026-10104). Risk of unauthorized operations or information disclosure.
CVE-2026-13704 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13704)
cross-site scripting in wordpress (CVE-2026-13704). Risk of unauthorized operations or information disclosure.
CVE-2026-10089 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10089)
cross-site scripting in wordpress (CVE-2026-10089). Risk of unauthorized operations or information disclosure.
CVE-2026-10077 Vulnerability in wordpress (CVE-2026-10077)
vulnerability in wordpress (CVE-2026-10077). Successful exploitation can lead to full system takeover.
CVE-2026-12142 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12142)
cross-site scripting in wordpress (CVE-2026-12142). Risk of unauthorized operations or information disclosure.
CVE-2026-10095 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10095)
cross-site scripting in wordpress (CVE-2026-10095). Risk of unauthorized operations or information disclosure.
CVE-2026-12754 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12754)
cross-site scripting in wordpress (CVE-2026-12754). Risk of unauthorized operations or information disclosure.
CVE-2026-13733 Cross-Site Scripting (XSS) in c (CVE-2026-13733)
cross-site scripting in c (CVE-2026-13733). Risk of unauthorized operations or information disclosure.
CVE-2026-12732 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12732)
cross-site scripting in wordpress (CVE-2026-12732). Risk of unauthorized operations or information disclosure.
CVE-2026-11570 Vulnerability in wordpress (CVE-2026-11570)
vulnerability in wordpress (CVE-2026-11570). Risk of unauthorized operations or information disclosure.
CVE-2026-7517 Cross-Site Scripting (XSS) in wordpress (CVE-2026-7517)
cross-site scripting in wordpress (CVE-2026-7517). Risk of unauthorized operations or information disclosure.
CVE-2026-13731 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13731)
cross-site scripting in wordpress (CVE-2026-13731). Risk of unauthorized operations or information disclosure.
CVE-2026-9107 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9107)
cross-site scripting in wordpress (CVE-2026-9107). Risk of unauthorized operations or information disclosure.
CVE-2026-13015 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13015)
cross-site scripting in wordpress (CVE-2026-13015). Risk of unauthorized operations or information disclosure.
CVE-2026-2387 Cross-Site Scripting (XSS) in wordpress (CVE-2026-2387)
cross-site scripting in wordpress (CVE-2026-2387). Risk of unauthorized operations or information disclosure.
CVE-2026-12135 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12135)
cross-site scripting in wordpress (CVE-2026-12135). Risk of unauthorized operations or information disclosure.
CVE-2026-11380 Cross-Site Scripting (XSS) in wordpress (CVE-2026-11380)
cross-site scripting in wordpress (CVE-2026-11380). Risk of unauthorized operations or information disclosure.
CVE-2026-13443 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13443)
cross-site scripting in wordpress (CVE-2026-13443). Risk of unauthorized operations or information disclosure.
CVE-2026-13246 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13246)
cross-site scripting in wordpress (CVE-2026-13246). Risk of unauthorized operations or information disclosure.
CVE-2026-10513 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10513)
cross-site scripting in wordpress (CVE-2026-10513). Risk of unauthorized operations or information disclosure.
CVE-2026-8141 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.
CVE-2026-11589 Vulnerability in wordpress (CVE-2026-11589)
vulnerability in wordpress (CVE-2026-11589). Successful exploitation can lead to full system takeover.
CVE-2026-12560 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12560)
cross-site scripting in wordpress (CVE-2026-12560). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →