Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21572

21572 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-37280 Pimcore admin UI vulnerable to Cross-site Scripting in two factor authentication setup page — admin-ui-classic-bundle 5.0 Medium2023-07-11
CVE-2023-34089 Decidim Cross-site Scripting vulnerability in the processes filter — decidim 8.1 High2023-07-11
CVE-2023-32693 Decidim Cross-site Scripting vulnerability in the external link redirections — decidim 8.1 High2023-07-11
CVE-2023-35335 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.0 8.2 High2023-07-11
CVE-2023-33171 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.0 8.2 High2023-07-11
CVE-2023-33159 Microsoft SharePoint Server Spoofing Vulnerability — Microsoft SharePoint Enterprise Server 2016 8.8 High2023-07-11
CVE-2023-29347 Windows Admin Center Spoofing Vulnerability — Windows Admin Center 8.7 High2023-07-11
CVE-2023-3620 Cross-site Scripting (XSS) - Stored in amauric/tarteaucitron.js — amauric/tarteaucitron.js 5.4 -2023-07-11
CVE-2023-36390 Siemens RUGGEDCOM ROX 系列多款产品 跨站脚本漏洞 — RUGGEDCOM ROX MX5000 8.8 High2023-07-11
CVE-2023-36389 Siemens RUGGEDCOM ROX 跨站脚本漏洞 — RUGGEDCOM ROX MX5000 8.8 High2023-07-11
CVE-2023-36386 Siemens RUGGEDCOM ROX 系列多款产品 跨站脚本漏洞 — RUGGEDCOM ROX MX5000 8.8 High2023-07-11
CVE-2023-36918 Cross-Site Scripting vulnerability in SAP Enable Now — SAP Enable Now 6.1 Medium2023-07-11
CVE-2023-33988 Cross-Site Scripting vulnerability in SAP Enable Now — SAP Enable Now 6.1 Medium2023-07-11
CVE-2023-24488 Cross site scripting — Citrix ADC and Citrix Gateway  6.1 Medium2023-07-10
CVE-2015-10121 Beeliked Microsite Plugin beelikedmicrosite.php embed_handler cross site scripting — Beeliked Microsite Plugin 3.5 Low2023-07-10
CVE-2015-10120 WDS Multisite Aggregate Plugin WDS_Multisite_Aggregate_Options.php update_options cross site scripting — WDS Multisite Aggregate Plugin 3.5 Low2023-07-10
CVE-2015-10119 View All Posts Page Plugin view-all-posts-pages.php action_admin_notices_activation cross site scripting — View All Posts Page Plugin 3.5 Low2023-07-10
CVE-2021-42083 Authenticated Stored XSS in OSNEXUS QuantaStor 6.0.0.335 — QuantaStor 8.7 High2023-07-10
CVE-2021-42080 Reflected XSS vulnerability in OSNEXUS QuantaStor before 6.0.0.355 — QuantaStor 7.4 High2023-07-10
CVE-2023-2853 XSS in SoftMed's SelfPatron — SelfPatron 6.1 Medium2023-07-09
CVE-2023-3564 GZ Scripts GZ Multi Hotel Booking System index.php cross site scripting — GZ Multi Hotel Booking System 3.5 Low2023-07-08
CVE-2023-3563 GZ Scripts GZ E Learning Platform URL Parameter cross site scripting — GZ E Learning Platform 3.5 Low2023-07-08
CVE-2023-3562 GZ Scripts PHP CRM Platform index.php cross site scripting — PHP CRM Platform 3.5 Low2023-07-08
CVE-2023-3561 GZ Scripts PHP GZ Hotel Booking Script load.php cross site scripting — PHP GZ Hotel Booking Script 3.5 Low2023-07-08
CVE-2023-3560 GZ Scripts Ticket Booking Script load.php cross site scripting — Ticket Booking Script 3.5 Low2023-07-08
CVE-2023-3559 GZ Scripts PHP GZ Appointment Scheduling Script load.php cross site scripting — PHP GZ Appointment Scheduling Script 3.5 Low2023-07-08
CVE-2023-3558 GZ Scripts Event Booking Calendar load.php cross site scripting — Event Booking Calendar 3.5 Low2023-07-08
CVE-2023-3557 GZ Scripts Property Listing Script preview.php cross site scripting — Property Listing Script 3.5 Low2023-07-08
CVE-2023-3565 Cross-site Scripting (XSS) - Generic in nilsteampassnet/teampass — nilsteampassnet/teampass 6.1 -2023-07-08
CVE-2023-3556 GZ Scripts Car Listing Script PHP preview.php cross site scripting — Car Listing Script PHP 3.5 Low2023-07-08

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21572 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.