Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21570

21570 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-35878 WordPress Extra User Details Plugin <= 0.5 is vulnerable to Cross Site Scripting (XSS) — Extra User Details 5.9 Medium2023-06-20
CVE-2023-35882 WordPress Super Socializer Plugin <= 7.13.52 is vulnerable to Cross Site Scripting (XSS) — Super Socializer 6.5 Medium2023-06-20
CVE-2023-35884 WordPress EventPrime Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS) — EventPrime 7.1 High2023-06-20
CVE-2023-32659 SUBNET PowerSYSTEM Center Cross-site Scripting — PowerSYSTEM Center 6.5 Medium2023-06-19
CVE-2023-34461 Cross-site Scripting (XSS) Availability in PyBB — PyBB 4.6 Medium2023-06-19
CVE-2023-35772 WordPress Google Map Shortcode Plugin <= 3.1.2 is vulnerable to Cross Site Scripting (XSS) — Google Map Shortcode 7.1 High2023-06-19
CVE-2023-35775 WordPress WP Backup Manager Plugin <= 1.13.1 is vulnerable to Cross Site Scripting (XSS) — WP Backup Manager 7.1 High2023-06-19
CVE-2023-35776 WordPress Sermon'e – Sermons Online Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS) — Sermon'e – Sermons Online 6.5 Medium2023-06-19
CVE-2023-35779 WordPress Seed Fonts Plugin 2.3.1 is vulnerable to Cross Site Scripting (XSS) — Seed Fonts 5.9 Medium2023-06-19
CVE-2023-33213 WordPress wpView Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS) — Display Custom Fields – wpView 5.9 Medium2023-06-19
CVE-2023-3318 SourceCodester Resort Management System cross site scripting — Resort Management System 3.5 Low2023-06-19
CVE-2023-3311 PuneethReddyHC online-shopping-system-advanced addsuppliers.php cross site scripting — online-shopping-system-advanced 2.4 Low2023-06-18
CVE-2023-3309 SourceCodester Resort Reservation System Manage Room Page ?page=rooms cross site scripting — Resort Reservation System 3.5 Low2023-06-18
CVE-2023-26537 WordPress WP No External Links Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS) — WP No External Links 5.9 Medium2023-06-16
CVE-2023-25974 WordPress wp2syslog Plugin <= 1.0.5 is vulnerable to Cross Site Scripting (XSS) — wp2syslog 5.9 Medium2023-06-16
CVE-2023-26527 WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS) — Debug Assistant 5.9 Medium2023-06-16
CVE-2023-27420 WordPress Arya Multipurpose Theme <= 1.0.5 is vulnerable to Cross Site Scripting (XSS) — Arya Multipurpose 7.1 High2023-06-16
CVE-2023-26515 WordPress Simple Slug Translate Plugin <= 2.7.2 is vulnerable to Cross Site Scripting (XSS) — Simple Slug Translate 5.9 Medium2023-06-16
CVE-2023-26541 WordPress asMember Plugin <= 1.5.4 is vulnerable to Cross Site Scripting (XSS) — asMember 5.9 Medium2023-06-16
CVE-2023-25963 WordPress JS Job Manager Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS) — JS Job Manager 5.9 Medium2023-06-16
CVE-2023-26013 WordPress Strong Testimonials Plugin <= 3.0.2 is vulnerable to Cross Site Scripting (XSS) — Strong Testimonials 6.5 Medium2023-06-16
CVE-2023-3293 Cross-site Scripting (XSS) - Stored in salesagility/suitecrm-core — salesagility/suitecrm-core 5.4 -2023-06-16
CVE-2023-3294 Cross-site Scripting (XSS) - DOM in saleor/react-storefront — saleor/react-storefront 6.1 -2023-06-16
CVE-2023-24420 WordPress Admin side data storage for Contact Form 7 Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS) — Admin side data storage for Contact Form 7 7.1 High2023-06-15
CVE-2023-25972 WordPress Старт Plugin <= 3.7 is vulnerable to Cross Site Scripting (XSS) — WordPress Старт 5.9 Medium2023-06-15
CVE-2023-3193 Liferay Portal 跨站脚本漏洞 — Portal 6.1 Medium2023-06-15
CVE-2023-29322 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience Manager 5.4 Medium2023-06-15
CVE-2023-29304 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience Manager 5.4 Medium2023-06-15
CVE-2023-29302 Adobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79) — Adobe Experience Manager 5.4 Medium2023-06-15
CVE-2023-34452 Grav vulnerable to Self Cross Site Scripting in /forgot_password — grav 5.4 Medium2023-06-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21570 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.