Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21573

21573 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-44629 WordPress Catalyst Connect Zoho CRM Client Portal Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS) — Catalyst Connect Zoho CRM Client Portal 5.9 Medium2023-08-10
CVE-2023-23826 WordPress Add Posts to Pages Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS) — Add Posts to Pages 6.5 Medium2023-08-10
CVE-2023-24389 WordPress Social Proof (Testimonial) Slider Plugin <= 2.2.3 is vulnerable to Cross Site Scripting (XSS) — Social Proof (Testimonial) Slider 5.9 Medium2023-08-10
CVE-2023-22843 Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2 — Guardian 6.4 Medium2023-08-09
CVE-2023-39518 social-media-skeleton stored Cross-site Scripting vulnerability — social-media-skeleton 5.4 Medium2023-08-08
CVE-2023-36892 Microsoft SharePoint Server Spoofing Vulnerability — Microsoft SharePoint Server 2019 8.0 High2023-08-08
CVE-2023-36891 Microsoft SharePoint Server Spoofing Vulnerability — Microsoft SharePoint Server 2019 8.0 High2023-08-08
CVE-2023-36881 Azure Apache Ambari Spoofing Vulnerability — Azure HDInsight 4.5 Medium2023-08-08
CVE-2023-36877 Azure Apache Oozie Spoofing Vulnerability — Azure HDInsight 4.5 Medium2023-08-08
CVE-2023-38188 Azure Apache Hadoop Spoofing Vulnerability — Azure HDInsight 4.5 Medium2023-08-08
CVE-2023-35394 Azure HDInsight Jupyter Notebook Spoofing Vulnerability — Azure HDInsight 4.6 Medium2023-08-08
CVE-2023-35393 Azure Apache Hive Spoofing Vulnerability — Azure HDInsight 4.5 Medium2023-08-08
CVE-2023-36869 Azure DevOps Server Spoofing Vulnerability — Azure DevOps Server 6.3 Medium2023-08-08
CVE-2023-3653 Stored XSS in Digital Ant E-Commerce Software — E-Commerce Software 5.4 Medium2023-08-08
CVE-2023-3652 Reflected XSS in Digital Ant E-Commerce Software — E-Commerce Software 6.1 Medium2023-08-08
CVE-2023-32292 WordPress Chat Button Plugin <= 1.8.9.4 is vulnerable to Cross Site Scripting (XSS) — Chat Button by GetButton.io 5.9 Medium2023-08-08
CVE-2023-31221 WordPress PDQ CSV Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS) — PDQ CSV 5.9 Medium2023-08-08
CVE-2023-28931 WordPress Post Connector Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS) — Post Connector 5.9 Medium2023-08-08
CVE-2023-38384 WordPress eaSYNC Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS) — eaSYNC 7.1 High2023-08-08
CVE-2023-28934 WordPress WP Full Stripe Free Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS) — WP Full Stripe Free 5.9 Medium2023-08-08
CVE-2023-28773 WordPress Secondary Title Plugin <= 2.0.9.1 is vulnerable to Cross Site Scripting (XSS) — Secondary Title 6.5 Medium2023-08-08
CVE-2023-30482 WordPress WPBulky Plugin < 1.0.10 is vulnerable to Cross Site Scripting (XSS) — WPBulky 6.5 Medium2023-08-08
CVE-2023-25984 WordPress Dovetail Plugin <= 1.2.13 is vulnerable to Cross Site Scripting (XSS) — Dovetail 5.9 Medium2023-08-08
CVE-2022-45821 WordPress NOO Timetable Plugin <= 2.1.3 is vulnerable to Cross Site Scripting (XSS) — Noo Timetable 6.5 Medium2023-08-08
CVE-2023-27415 WordPress LetterPress Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS) — LetterPress 5.9 Medium2023-08-08
CVE-2023-27627 WordPress Woocommerce Email Report Plugin <= 2.4 is vulnerable to Cross Site Scripting (XSS) — Woocommerce Email Report 7.1 High2023-08-08
CVE-2023-25063 WordPress Quick Page/Post Redirect Plugin <= 5.2.3 is vulnerable to Cross Site Scripting (XSS) — Quick Page/Post Redirect Plugin 5.9 Medium2023-08-08
CVE-2023-23829 WordPress Owl Carousel Plugin <= 0.5.3 is vulnerable to Cross Site Scripting (XSS) — Owl Carousel 6.5 Medium2023-08-08
CVE-2023-23877 WordPress Pinterest RSS Widget Plugin <= 2.3.1 is vulnerable to Cross Site Scripting (XSS) — Pinterest RSS Widget 6.5 Medium2023-08-08
CVE-2023-24413 WordPress wordpress vertical image slider plugin Plugin <= 1.2.16 is vulnerable to Cross Site Scripting (XSS) — WordPress vertical image slider plugin 7.1 High2023-08-08

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21573 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.