Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21570

21570 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-13023 PHPGurukul Maid Hiring Management System Search Maid Page search-maid.php cross site scripting — Maid Hiring Management System 2.4 Low2024-12-29
CVE-2024-13021 SourceCodester Road Accident Map Marker add-mark.php cross site scripting — Road Accident Map Marker 3.5 Low2024-12-29
CVE-2024-13019 code-projects Chat System Chat Room Page update_room.php cross site scripting — Chat System 3.5 Low2024-12-29
CVE-2024-13018 PHPGurukul Maid Hiring Management System profile.php cross site scripting — Maid Hiring Management System 2.4 Low2024-12-29
CVE-2024-13017 PHPGurukul Maid Hiring Management System About Us Page aboutus.php cross site scripting — Maid Hiring Management System 2.4 Low2024-12-29
CVE-2024-13015 PHPGurukul Maid Hiring Management System search-booking-request.php cross site scripting — Maid Hiring Management System 2.4 Low2024-12-29
CVE-2024-13013 PHPGurukul Maid Hiring Management System Contact Us Page contactus.php cross site scripting — Maid Hiring Management System 2.4 Low2024-12-29
CVE-2024-13012 code-projects Hostel Management System registration.php cross site scripting — Hostel Management System 3.5 Low2024-12-29
CVE-2024-12998 code-projects Online Car Rental System GET Parameter index.php cross site scripting — Online Car Rental System 4.3 Medium2024-12-28
CVE-2024-12995 ruifang-tech Rebuild Project Tasks Section tasks cross site scripting — Rebuild 3.5 Low2024-12-28
CVE-2024-12991 Beijing Longda Jushang Technology DBShop商城系统 home-order cross site scripting — DBShop商城系统 3.5 Low2024-12-27
CVE-2024-56507 Reflected Cross-Site Scripting (XSS) Vulnerability in LinkAce — LinkAce 4.6 Medium2024-12-27
CVE-2024-12983 code-projects Hospital Management System Edit Doctor Details Page manage-doctors.php cross site scripting — Hospital Management System 2.4 Low2024-12-27
CVE-2024-12982 PHPGurukul Blood Bank & Donor Management System update-contactinfo.php cross site scripting — Blood Bank & Donor Management System 2.4 Low2024-12-27
CVE-2024-12980 code-projects Job Recruitment _all_edits.php fln_update cross site scripting — Job Recruitment 4.3 Medium2024-12-27
CVE-2024-12979 code-projects Job Recruitment _all_edits.php cn_update cross site scripting — Job Recruitment 4.3 Medium2024-12-27
CVE-2024-56527 TCPDF 安全漏洞 — tcpdf 4.4 -2024-12-27
CVE-2024-56361 Stored Cross-Site Scripting (XSS) in lgsl v7.0 — lgsl 5.4 -2024-12-26
CVE-2024-56510 Marp Core allows XSS by improper neutralization of HTML sanitization — marp-core 5.3 Medium2024-12-26
CVE-2024-12933 code-projects Simple Admin Panel updateItemController.php cross site scripting — Simple Admin Panel 3.5 Low2024-12-26
CVE-2024-12932 code-projects Simple Admin Panel addSizeController.php cross site scripting — Simple Admin Panel 3.5 Low2024-12-26
CVE-2024-12930 code-projects Simple Admin Panel addCatController.php cross site scripting — Simple Admin Panel 3.5 Low2024-12-26
CVE-2024-12268 Responsive Blocks – WordPress Gutenberg Blocks <= 1.9.7 - Authenticated (Contributor+) Stored Cross-Site Scripting — Responsive Blocks – Page Builder for Blocks & Patterns 6.4 Medium2024-12-24
CVE-2024-8721 Tracking Code Manager <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Tracking Code Manager 6.4 Medium2024-12-24
CVE-2024-12468 WP Datepicker <= 2.1.4 - Reflected Cross-Site Scripting — WP Datepicker 6.1 Medium2024-12-24
CVE-2024-11896 Text Prompter – Unlimited chatgpt text prompts for openai tasks <= 1.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting — Text Prompter – Unlimited chatgpt text prompts for openai tasks 6.4 Medium2024-12-24
CVE-2024-12814 Loan Comparison <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Loan Comparison 6.4 Medium2024-12-24
CVE-2024-12100 Bitcoin Lightning Publisher for WordPress <= 1.4.1 - Reflected Cross-Site Scripting — Bitcoin Lightning Publisher for WordPress 6.1 Medium2024-12-24
CVE-2024-12405 Export Customers Data <= 1.2.3 - Reflected Cross-Site Scripting — Export Customers Data 6.1 Medium2024-12-24
CVE-2024-12622 WordPress Simple Shopping Cart <= 5.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting — Simple Shopping Cart 6.4 Medium2024-12-24

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21570 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.