Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21572

21572 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-3789 PaulPrinting CMS Search delivery cross site scripting — CMS 3.5 Low2023-07-20
CVE-2023-3788 ActiveITzone Active Super Shop CMS Manage Details Page cross site scripting — Active Super Shop CMS 3.5 Low2023-07-20
CVE-2023-3787 Codecanyon Tiva Events Calender cross site scripting — Tiva Events Calender 3.5 Low2023-07-20
CVE-2023-3785 PaulPrinting CMS cross site scripting — CMS 3.5 Low2023-07-20
CVE-2023-3784 Dooblou WiFi File Explorer cross site scripting — WiFi File Explorer 3.5 Low2023-07-20
CVE-2023-3783 Webile HTTP POST Request cross site scripting — Webile 3.5 Low2023-07-20
CVE-2023-3757 GZ Scripts Car Rental Script cross site scripting — Car Rental Script 3.5 Low2023-07-19
CVE-2023-3756 Creativeitem Atlas Business Directory Listing search cross site scripting — Atlas Business Directory Listing 3.5 Low2023-07-19
CVE-2023-3755 Creativeitem Atlas Business Directory Listing filter_listings cross site scripting — Atlas Business Directory Listing 3.5 Low2023-07-19
CVE-2023-3754 Creativeitem Ekushey Project Manager CRM xxxxxxxx[random-msg-hash] cross site scripting — Ekushey Project Manager CRM 3.5 Low2023-07-19
CVE-2023-3753 Creativeitem Mastery LMS browse cross site scripting — Mastery LMS 3.5 Low2023-07-19
CVE-2023-3752 Creativeitem Academy LMS courses cross site scripting — Academy LMS 3.5 Low2023-07-19
CVE-2023-33312 WordPress Easy Captcha Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) — Easy Captcha 7.1 High2023-07-18
CVE-2023-33329 WordPress Custom Post Type Generator Plugin <= 2.4.2 is vulnerable to Cross Site Scripting (XSS) — Custom Post Type Generator 5.9 Medium2023-07-18
CVE-2023-37259 Cross site scripting in Export Chat feature — matrix-react-sdk 6.1 Medium2023-07-18
CVE-2023-33231 XSS in SolarWinds Database Performance Analyzer 2023.2 — DPA 6.1 Medium2023-07-18
CVE-2023-36383 WordPress Event Manager for WooCommerce Plugin <= 3.9.5 is vulnerable to Cross Site Scripting (XSS) — Event Manager and Tickets Selling Plugin for WooCommerce 5.9 Medium2023-07-18
CVE-2023-36384 WordPress Booking Calendar Contact Form Plugin <= 1.2.40 is vulnerable to Cross Site Scripting (XSS) — Booking Calendar Contact Form 7.1 High2023-07-18
CVE-2023-24390 WordPress WeSecur Security Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — WeSecur Security 5.9 Medium2023-07-18
CVE-2022-47421 WordPress ARMember (free) and ARMember (premium) plugins - vulnerable to Auth. Stored Cross Site Scripting (XSS) — ARMember (free) 5.9 Medium2023-07-18
CVE-2023-32965 WordPress Jazz Popups Plugin <= 1.8.7 is vulnerable to Cross Site Scripting (XSS) — Jazz Popups 7.1 High2023-07-18
CVE-2023-2433 YARPP – Yet Another Related Posts Plugin <= 5.30.3 - Authenticated (Contributor+) Stored Cross-Site Scripting — YARPP – Yet Another Related Posts Plugin 6.4 Medium2023-07-18
CVE-2023-3708 Multiple DeoThemes Themes <= (Various Versions) - Reflected Cross-Site Scripting — Amela 6.1 Medium2023-07-18
CVE-2023-2960 XSS in Oliva Expertise — Oliva Expertise EKS 6.1 Medium2023-07-17
CVE-2023-3691 layui HTML Attribute cross site scripting — layui 3.5 Low2023-07-16
CVE-2023-3685 Nesote Inout Search Engine AI Edition index.php cross site scripting — Inout Search Engine AI Edition 3.5 Low2023-07-16
CVE-2023-3683 LivelyWorks Articart search cross site scripting — Articart 3.5 Low2023-07-16
CVE-2023-2507 CleverTap Cordova Plugin 2.6.2 - Reflected XSS — Cordova Plugin 9.3 Critical2023-07-15
CVE-2023-3681 Campcodes Retro Cellphone Online Store modal_add_product.php cross site scripting — Retro Cellphone Online Store 3.5 Low2023-07-15
CVE-2023-24896 Dynamics 365 Finance Spoofing Vulnerability — Dynamics 365 for Finance and Operations 5.4 Medium2023-07-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21572 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.