Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21506

21506 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-25392 Smoothwall Express 3.1 'iptools.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25390 Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting — Smoothwall Express 5.4 Medium2026-02-16
CVE-2019-25389 Smoothwall Express 3.1 'timedaccess.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25388 Smoothwall Express 3.1 'ipblock.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25387 Smoothwall Express 3.1 'xtaccess.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25386 Smoothwall Express 3.1 'dmzholes.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25385 Smoothwall Express 3.1 'outgoing.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25384 Smoothwall Express 3.1 'portfw.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25382 Smoothwall Express 3.1 'time.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25383 Smoothwall Express 3.1 'apcupsd.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25381 Smoothwall Express 3.1 'hosts.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25380 Smoothwall Express 3.1 'dhcp.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25379 Smoothwall Express 3.1 'urlfilter.cgi' Cross-Site Scripting — Smoothwall Express 7.2 High2026-02-16
CVE-2019-25378 Smoothwall Express 3.1 'proxy.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2026-26930 SmarterTools SmarterMail 安全漏洞 — SmarterMail 7.2 High2026-02-16
CVE-2026-2101 Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19 — ENOVIAvpm Web Access 8.7 High2026-02-16
CVE-2026-2557 cskefu File Upload MediaController.java upload cross site scripting — cskefu 3.5 Low2026-02-16
CVE-2025-59904 Stored Cross-Site Scripting vulnerability in Kubysoft — Kubysoft 5.4AIMediumAI2026-02-16
CVE-2025-59903 Stored Cross-Site Scripting (XSS) in Kubysoft — Kubysoft 5.4AIMediumAI2026-02-16
CVE-2025-59905 Reflected Cross-Site Scripting (XSS) in Kubysoft — Kubysoft 6.1AIMediumAI2026-02-16
CVE-2026-2547 LigeroSmart index.pl AgentDashboard cross site scripting — LigeroSmart 3.5 Low2026-02-16
CVE-2026-2546 LigeroSmart index.pl cross site scripting — LigeroSmart 3.5 Low2026-02-16
CVE-2026-2545 LigeroSmart index.pl cross site scripting — LigeroSmart 3.5 Low2026-02-16
CVE-2019-25377 OPNsense 19.1 Reflected XSS via system_advanced_sysctl.php — OPNsense 5.4 Medium2026-02-15
CVE-2019-25376 OPNsense 19.1 Reflected XSS via proxy endpoint — OPNsense 6.1 Medium2026-02-15
CVE-2019-25375 OPNsense 19.1 Reflected XSS via monit interface — OPNsense 6.1 Medium2026-02-15
CVE-2019-25374 OPNsense 19.1 Reflected XSS via vpn_ipsec_settings.php — OPNsense 6.1 Medium2026-02-15
CVE-2019-25373 OPNsense 19.1 Stored XSS via firewall_rules_edit.php — OPNsense 6.4 Medium2026-02-15
CVE-2019-25371 OPNsense 19.1 Reflected XSS via diag_ping.php — OPNsense 6.1 Medium2026-02-15
CVE-2019-25372 OPNsense 19.1 Reflected XSS via diag_traceroute.php — OPNsense 6.1 Medium2026-02-15

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21506 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.