Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21506

21506 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-25418 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via fwgroups — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25416 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via device Parameter — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25417 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via QoS Rules — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25415 Comodo Dome Firewall 2.7.0 Cross-Site Scripting via hotspot_permanent_users — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25414 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via ID Parameter Appid — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25413 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via ID Parameter — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25412 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via NTP_SERVER_LIST — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25411 Comodo Dome Firewall 2.7.0 Cross-Site Scripting via DHCP — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25409 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via routing — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25410 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via policy_routing — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25408 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via netwizard2 — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25407 Comodo Dome Firewall 2.7.0 Cross-Site Scripting via backupschedule — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25406 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via organization Parameter — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2019-25405 Comodo Dome Firewall 2.7.0 Stored Cross-Site Scripting via license_activation — Comodo Dome Firewall 7.2 High2026-02-19
CVE-2019-25404 Comodo Dome Firewall 2.7.0 Stored Cross-Site Scripting via admins — Comodo Dome Firewall 6.4 Medium2026-02-19
CVE-2019-25403 Comodo Dome Firewall 2.7.0 Stored Cross-Site Scripting via admin_profiles — Comodo Dome Firewall 6.4 Medium2026-02-19
CVE-2019-25402 Comodo Dome Firewall 2.7.0 Cross-Site Scripting via login — Comodo Dome Firewall 6.1 Medium2026-02-19
CVE-2025-15562 Reflected Cross-Site Scripting in NesterSoft WorkTime — WorkTime (on-prem/cloud) 6.1AIMediumAI2026-02-19
CVE-2026-2716 Client Testimonial Slider <= 2.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Testimonial Heading' Setting — Client Testimonial Slider 4.4 Medium2026-02-19
CVE-2026-2718 Dealia <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gutenberg Block Attributes — Dealia – Request a quote 6.4 Medium2026-02-19
CVE-2025-40697 Reflected Cross-Site Scripting (XSS) in Lewe WebMeasure — WebMeasure 6.1AIMediumAI2026-02-19
CVE-2026-2736 Reflected Cross-Site Scripting (XSS) vulnerability in Alkacon's OpenCms — OpenCms 6.1 -2026-02-19
CVE-2026-2735 Stored Cross-Site Scripting (XSS) vulnerability in Alkacon's OpenCms — OpenCms 5.4 -2026-02-19
CVE-2026-27094 WordPress CoBlocks plugin <= 3.1.16 - Cross Site Scripting (XSS) vulnerability — CoBlocks 6.1AIMediumAI2026-02-19
CVE-2026-27069 WordPress Soledad theme <= 8.7.2 - Cross Site Scripting (XSS) vulnerability — Soledad 6.1AIMediumAI2026-02-19
CVE-2026-27074 WordPress Shortcoder plugin <= 6.5.1 - Cross Site Scripting (XSS) vulnerability — Shortcoder 5.4AIMediumAI2026-02-19
CVE-2026-27058 WordPress Penci Podcast plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability — Penci Podcast 6.1AIMediumAI2026-02-19
CVE-2026-27059 WordPress Penci Recipe plugin <= 4.1 - Cross Site Scripting (XSS) vulnerability — Penci Recipe 6.1AIMediumAI2026-02-19
CVE-2026-27057 WordPress Penci Filter Everything plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability — Penci Filter Everything 5.4AIMediumAI2026-02-19
CVE-2026-25472 WordPress Fusion Builder plugin <= 3.14.1 - Cross Site Scripting (XSS) vulnerability — Fusion Builder 5.4AIMediumAI2026-02-19

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21506 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.