Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21573

21573 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-53752 WordPress Stripe Donation plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability — Stripe Donation 6.5 Medium2024-12-01
CVE-2024-53756 WordPress Vertical Carousel plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability — Vertical Carousel 6.5 Medium2024-11-30
CVE-2024-53757 WordPress WP Find Your Nearest plugin <= 0.3.1 - Cross Site Scripting (XSS) vulnerability — WP Find Your Nearest 6.5 Medium2024-11-30
CVE-2024-53758 WordPress WP MathJax plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — WP MathJax 6.5 Medium2024-11-30
CVE-2024-53760 WordPress Capitalize My Title WordPress plugin <= 0.5.3 - Cross Site Scripting (XSS) vulnerability — Capitalize My Title 6.5 Medium2024-11-30
CVE-2024-53763 WordPress Best Addons for Elementor plugin <=1.0.5 - Stored Cross Site Scripting (XSS) vulnerability — Best Addons for Elementor 6.5 Medium2024-11-30
CVE-2024-53764 WordPress Softtemplates For Elementor plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability — Softtemplates For Elementor 6.5 Medium2024-11-30
CVE-2024-53766 WordPress Devnex Addons For Elementor plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability — Devnex Addons For Elementor 6.5 Medium2024-11-30
CVE-2024-53767 WordPress Pixobe Cartography plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — Pixobe Cartography 6.5 Medium2024-11-30
CVE-2024-53771 WordPress SimpleSchema plugin <= 1.7.6.9 - Cross Site Scripting (XSS) vulnerability — SimpleSchema 6.5 Medium2024-11-30
CVE-2024-53772 WordPress Mail Picker plugin <= 1.0.15 - Cross Site Scripting (XSS) vulnerability — Mail Picker 6.5 Medium2024-11-30
CVE-2024-53773 WordPress Znajdź Pracę z Praca.pl plugin <= 2.2.3 - Cross Site Scripting (XSS) vulnerability — Znajdź Pracę z Praca.pl 6.5 Medium2024-11-30
CVE-2024-53774 WordPress Sparkle Elementor Kit plugin <= 2.0.9 - Cross Site Scripting (XSS) vulnerability — Sparkle Elementor Kit 6.5 Medium2024-11-30
CVE-2024-53786 WordPress Cowidgets – Elementor Addons plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability — Cowidgets – Elementor Addons 6.5 Medium2024-11-30
CVE-2024-53787 WordPress Random Banner plugin <= 4.2.12 - Cross Site Scripting (XSS) vulnerability — Random Banner 6.5 Medium2024-11-30
CVE-2024-53788 WordPress WordPress Portfolio Builder – Portfolio Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability — WordPress Portfolio Builder – Portfolio Gallery 5.9 Medium2024-11-30
CVE-2024-12001 code-projects Wazifa System Setting updatesettings.php cross site scripting — Wazifa System 3.5 Low2024-11-30
CVE-2024-12000 code-projects Blood Bank System Setting updatesettings.php cross site scripting — Blood Bank System 3.5 Low2024-11-30
CVE-2024-11997 code-projects Farmacia vendas.php cross site scripting — Farmacia 3.5 Low2024-11-30
CVE-2024-11996 code-projects Farmacia editar-fornecedor.php cross site scripting — Farmacia 3.5 Low2024-11-30
CVE-2024-11252 Social Sharing Plugin – Sassy Social Share <= 3.3.69 - Reflected Cross-Site Scripting via heateor_mastodon_share Parameter — Social Sharing Plugin – Sassy Social Share 6.1 Medium2024-11-30
CVE-2024-11995 code-projects Farmacia pagamento.php cross site scripting — Farmacia 3.5 Low2024-11-29
CVE-2024-53864 Cross-site Scripting in a field that is used in the Content name pattern in ibexa/admin-ui — admin-ui 5.4 -2024-11-29
CVE-2024-52809 Cross-site Scripting vulnerability with prototype pollution in vue-i18n — vue-i18n 6.1 -2024-11-29
CVE-2024-11990 Cross-Site Scripting (XSS) en SurgeMail de NetWin — SurgeMail 4.6 Medium2024-11-29
CVE-2024-11971 Guizhou Xiaoma Technology jpress Avatar upload cross site scripting — jpress 3.5 Low2024-11-28
CVE-2024-53731 WordPress Fintelligence Calculator plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability — Fintelligence Calculator 6.5 Medium2024-11-28
CVE-2024-53733 WordPress Fence URL plugin <= 2.0.0 - CSRF to Stored XSS vulnerability — Fence URL 7.1 High2024-11-28
CVE-2024-11402 WordPress Block Editor Bootstrap Blocks plugin <= 6.6.1 - Reflected Cross Site Scripting (XSS) vulnerability — Block Editor Bootstrap Blocks 7.1 High2024-11-28
CVE-2024-53737 WordPress WP Mailster plugin <= 1.8.16.0 - Cross Site Scripting (XSS) vulnerability — WP Mailster 6.5 Medium2024-11-28

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21573 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.