Aggregates CVE and security vulnerability intelligence across all cryoutcreations-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting, with potential vendor impact session compromise across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-11108 | The Serious Slider WordPress plugin before 1.2.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. | [email protected] | 5.4 | 0.34% | 2024-12-20 | 2025-05-14 |
| CVE-2024-43994 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Kahuna allows Stored XSS.This issue affects Kahuna: from n/a through 1.7.0. | [email protected] | 6.5 | 0.15% | 2024-09-18 | 2024-09-25 |
| CVE-2024-43993 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Liquido allows Stored XSS.This issue affects Liquido: from n/a through 1.0.1.2. | [email protected] | 6.5 | 0.15% | 2024-09-18 | 2024-09-25 |
| CVE-2024-45452 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cryout-creations Septera septera allows Stored XSS.This issue affects Septera: from n/a through <= 1.5.1. | [email protected] | 6.5 | 0.26% | 2024-09-17 | 2026-04-23 |
| CVE-2024-45451 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cryout-creations Roseta roseta allows Stored XSS.This issue affects Roseta: from n/a through <= 1.3.0. | [email protected] | 6.5 | 0.26% | 2024-09-17 | 2026-04-23 |
| CVE-2024-44050 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cryout-creations Verbosa verbosa allows Stored XSS.This issue affects Verbosa: from n/a through <= 1.2.3. | [email protected] | 6.5 | 0.26% | 2024-09-17 | 2026-04-23 |
| CVE-2024-44058 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Parabola allows Stored XSS.This issue affects Parabola: from n/a through 2.4.1. | [email protected] | 6.5 | 0.15% | 2024-09-15 | 2024-09-23 |
| CVE-2024-44057 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Nirvana allows Stored XSS.This issue affects Nirvana: from n/a through 1.6.3. | [email protected] | 6.5 | 0.05% | 2024-09-15 | 2024-09-23 |
| CVE-2024-44056 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Mantra allows Stored XSS.This issue affects Mantra: from n/a through 3.3.2. | [email protected] | 6.5 | 0.05% | 2024-09-15 | 2024-09-23 |
| CVE-2024-44054 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Fluida allows Stored XSS.This issue affects Fluida: from n/a through 1.8.8. | [email protected] | 6.5 | 0.05% | 2024-09-15 | 2024-09-23 |
| CVE-2024-43952 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Esotera allows Stored XSS.This issue affects Esotera: from n/a through 1.2.5.1. | [email protected] | 6.5 | 0.29% | 2024-08-29 | 2024-08-30 |
| CVE-2024-43951 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Tempera allows Stored XSS.This issue affects Tempera: from n/a through 1.8.2. | [email protected] | 6.5 | 0.29% | 2024-08-29 | 2024-08-30 |
| CVE-2024-35762 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Cryout Creations Serious Slider allows Stored XSS.This issue affects Serious Slider: from n/a through 1.2.4. | [email protected] | 6.5 | 0.15% | 2024-06-21 | 2024-11-21 |