Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21572

21572 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-54037 Adobe Connect | Cross-site Scripting (DOM-based XSS) (CWE-79) — Adobe Connect 8.1 High2024-12-10
CVE-2024-54045 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54043 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54040 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Connect 5.4 Medium2024-12-10
CVE-2024-54049 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54036 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Connect 9.3 Critical2024-12-10
CVE-2024-54041 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Connect 5.4 Medium2024-12-10
CVE-2024-54039 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Connect 5.4 Medium2024-12-10
CVE-2024-54042 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54034 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 9.3 Critical2024-12-10
CVE-2024-54044 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-49550 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54047 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-54032 Adobe Connect | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Connect 9.3 Critical2024-12-10
CVE-2024-54046 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Connect 6.1 Medium2024-12-10
CVE-2024-55546 Stored Cross-Site Scripting — IAP-420 5.4 -2024-12-10
CVE-2024-55545 Reflected Cross-Site Scripting — IAP-420 6.1 -2024-12-10
CVE-2024-12323 turboSMTP <= 4.6 - Reflected Cross-Site Scripting via 'page' — turboSMTP 6.1 Medium2024-12-10
CVE-2024-47117 IBM Carbon Design System cross-site scripting — Carbon Charts 5.4 Medium2024-12-10
CVE-2024-11928 iChart – Easy Charts and Graphs <= 2.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter — iChart – Easy Charts and Graphs 6.4 Medium2024-12-10
CVE-2024-11945 Email Reminders <= 2.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter — Email Reminders 6.4 Medium2024-12-10
CVE-2024-11973 Quran multilanguage Text & Audio <= 2.3.21 - Reflected Cross-Site Scripting via sourate and lang Parameters — Quran multilanguage Text & Audio 6.1 Medium2024-12-10
CVE-2024-11940 Property Hive Mortgage Calculator <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via price Parameter — Property Hive Mortgage Calculator 6.4 Medium2024-12-10
CVE-2024-55635 Drupal core - Critical - Cross Site Scripting - SA-CORE-2024-005 — Drupal Core 6.1 -2024-12-09
CVE-2024-12393 Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2024-003 — Drupal Core 6.1 -2024-12-09
CVE-2024-55601 Hugo does not escape some attributes in internal templates — hugo 5.4 -2024-12-09
CVE-2024-53847 Trix vulnerable to Cross-site Scripting on copy & paste — trix 6.1 -2024-12-09
CVE-2024-52599 Tuleap vulnerable to XSS in the Gantt chart of the tracker plugin — tuleap 5.4 Medium2024-12-09
CVE-2024-53791 WordPress Lenxel Core plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability — Lenxel Core for Lenxel(LNX) LMS 6.5 Medium2024-12-09
CVE-2024-53818 WordPress PostX plugin <= 4.1.15 - Cross Site Scripting (XSS) vulnerability — PostX 6.5 Medium2024-12-09

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21572 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.