CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21572

21572 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-3846	mooSocial mooDating URL pages cross site scripting — mooDating	3.5	Low	2023-07-23
CVE-2023-3845	mooSocial mooDating URL ajax_invite cross site scripting — mooDating	3.5	Low	2023-07-23
CVE-2023-3844	mooSocial mooDating URL friends cross site scripting — mooDating	3.5	Low	2023-07-23
CVE-2023-3843	mooSocial mooDating URL question cross site scripting — mooDating	3.5	Low	2023-07-23
CVE-2023-3840	NxFilter cross site scripting — NxFilter	3.5	Low	2023-07-23
CVE-2023-3838	DedeBIZ vote_edit.php cross site scripting — DedeBIZ	2.4	Low	2023-07-23
CVE-2023-3837	DedeBIZ sys_sql_query.php cross site scripting — DedeBIZ	2.4	Low	2023-07-22
CVE-2023-3835	Bug Finder MineStack Ticket create cross site scripting — MineStack	3.5	Low	2023-07-22
CVE-2023-3834	Bug Finder EX-RATE Ticket create cross site scripting — EX-RATE	3.5	Low	2023-07-22
CVE-2023-3833	Bug Finder Montage Ticket create cross site scripting — Montage	3.5	Low	2023-07-22
CVE-2023-3832	Bug Finder Wedding Wonders Ticket create cross site scripting — Wedding Wonders	3.5	Low	2023-07-22
CVE-2023-3831	Bug Finder Finounce Ticket create cross site scripting — Finounce	3.5	Low	2023-07-22
CVE-2023-3830	Bug Finder SASS BILLER store cross site scripting — SASS BILLER	3.5	Low	2023-07-22
CVE-2023-3829	Bug Finder ICOGenie Support Ticket create cross site scripting — ICOGenie	3.5	Low	2023-07-22
CVE-2023-3828	Bug Finder Listplace Directory Listing Platform Photo coverPhotoUpdate cross site scripting — Listplace Directory Listing Platform	3.5	Low	2023-07-22
CVE-2023-3827	Bug Finder Listplace Directory Listing Platform HTTP POST Request create cross site scripting — Listplace Directory Listing Platform	3.5	Low	2023-07-22
CVE-2023-28530	IBM Cognos Analytics cross-site scripting — Cognos Analytics	5.4	Medium	2023-07-22
CVE-2023-25929	IBM Cognos Analytics cross-site scripting — Cognos Analytics	4.6	Medium	2023-07-22
CVE-2023-37905	Cross-site Scripting (XSS) in Source Mode of Editor in ckeditor-wordcount-plugin — CKEditor-WordCount-Plugin	6.1	Medium	2023-07-21
CVE-2023-25841	BUG-000158075 Stored XSS issue in ArcGIS Server — ArcGIS Enterprise Server	6.1	Medium	2023-07-21
CVE-2023-25840	BUG-000154070 Stored XSS issue in the ArcGIS REST Services directory — ArcGIS Enterprise Server	3.4	Low	2023-07-21
CVE-2023-37901	Cross-Site-Scripting via confirmation prompts — indico	5.4	Medium	2023-07-21
CVE-2023-3822	Cross-site Scripting (XSS) - Reflected in pimcore/pimcore — pimcore/pimcore	5.4	-	2023-07-21
CVE-2023-3821	Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore	5.4	-	2023-07-21
CVE-2023-3815	y_project RuoYi File Upload uploadFilesPath cross site scripting — RuoYi	3.5	Low	2023-07-21
CVE-2023-25837	BUG-000133088 - ArcGIS Enterprise site builder is subject to stored XSS. — Portal for ArcGIS Sites	8.4	High	2023-07-21
CVE-2023-25836	BUG-000135364 XSS in 10.8.1 sites builder iframe source — Portal for ArcGIS Sites	5.4	Medium	2023-07-21
CVE-2023-25835	BUG-000153659 ArcGIS Enterprise Sites has a stored XSS vulnerability — Portal for ArcGIS Sites	8.4	High	2023-07-20
CVE-2023-3794	Bug Finder ChainCity Real Estate Investment Platform New Ticket create cross site scripting — ChainCity Real Estate Investment Platform	3.5	Low	2023-07-20
CVE-2023-3790	Boom CMS assets-manager add cross site scripting — CMS	3.5	Low	2023-07-20

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21572 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21572