Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21570

21570 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-56063 WordPress Essential Addons for Elementor plugin <= 6.0.7 - Cross Site Scripting (XSS) vulnerability — Essential Addons for Elementor 6.5 Medium2024-12-31
CVE-2024-13083 PHPGurukul Land Record System admin-profile.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13082 PHPGurukul Land Record System search-property.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13081 PHPGurukul Land Record System contactus.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13080 PHPGurukul Land Record System aboutus.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13077 PHPGurukul Land Record System add-property.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13076 PHPGurukul Land Record System edit-propertytype.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13075 PHPGurukul Land Record System add-propertytype.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13074 PHPGurukul Land Record System index.php cross site scripting — Land Record System 3.5 Low2024-12-31
CVE-2024-13069 SourceCodester Multi Role Login System add-user.php cross site scripting — Multi Role Login System 3.5 Low2024-12-31
CVE-2024-56209 WordPress Kleo theme < 5.4.4 - Reflected Cross Site Scripting (XSS) vulnerability — Kleo 7.1 High2024-12-31
CVE-2024-56210 WordPress UserPro plugin <= 5.1.9 - Reflected Cross Site Scripting (XSS) vulnerability — Userpro 7.1 High2024-12-31
CVE-2024-56221 WordPress WPMozo Addons Lite for Elementor plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability — WPMozo Addons Lite for Elementor 6.5 Medium2024-12-31
CVE-2024-56223 WordPress Gulri Slider plugin <= 3.5.8 - Reflected Cross Site Scripting (XSS) vulnerability — Gulri Slider 7.1 High2024-12-31
CVE-2024-56224 WordPress Ledenbeheer plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability — Ledenbeheer 6.5 Medium2024-12-31
CVE-2024-56226 WordPress Royal Elementor Addons plugin <= 1.7.1001 - Reflected Cross Site Scripting (XSS) vulnerability — Royal Elementor Addons 7.1 High2024-12-31
CVE-2024-56228 WordPress Wishlist for WooCommerce: Multi Wishlists Per Customer plugin <= 3.1.2 - Reflected Cross Site Scripting (XSS) vulnerability — Wishlist for WooCommerce 7.1 High2024-12-31
CVE-2024-56231 WordPress SaasPricing plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability — SaasPricing 6.5 Medium2024-12-31
CVE-2024-56233 WordPress Kintpv Wooconnect plugin <= 8.129 - Cross Site Scripting (XSS) vulnerability — KinTPV WooConnect 7.1 High2024-12-31
CVE-2024-56235 WordPress Coupon plugin <= 1.2.2 - Cross Site Scripting (XSS) vulnerability — Coupon 6.5 Medium2024-12-31
CVE-2024-56256 WordPress Embed PDF Viewer plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability — Embed PDF Viewer 5.9 Medium2024-12-31
CVE-2024-56265 WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Cross Site Scripting (XSS) vulnerability — WooCommerce PDF Vouchers 7.1 High2024-12-31
CVE-2024-56517 LGSL has a reflected XSS at /lgsl_files/lgsl_list.php — lgsl 6.1 -2024-12-30
CVE-2024-47925 Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') — TCExam 7.5 High2024-12-30
CVE-2024-47924 Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') — Boa web 7.5 High2024-12-30
CVE-2024-47920 Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') — CMS 7.5 High2024-12-30
CVE-2024-47917 Mobotix - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') — CCTV FW 7.5 High2024-12-30
CVE-2024-13034 code-projects Chat System update_user.php cross site scripting — Chat System 3.5 Low2024-12-30
CVE-2024-13033 code-projects Chat System chatroom.php cross site scripting — Chat System 3.5 Low2024-12-30
CVE-2024-13031 Antabot White-Jotter Article Content Editor editor cross site scripting — White-Jotter 2.4 Low2024-12-30

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21570 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.