Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21552

21552 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-33986 Cross-Site Scripting (XSS) vulnerability in SAP CRM ABAP (Grantor Management) — SAP CRM ABAP (Grantor Management) 6.1 Medium2023-06-13
CVE-2023-33985 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal — SAP NetWeaver Enterprise Portal 6.1 Medium2023-06-13
CVE-2023-33984 Cross-Site Scripting (XSS) vulnerability in NetWeaver (Design Time Repository) — SAP NetWeaver (Design Time Repository) 6.4 Medium2023-06-13
CVE-2023-35054 JetBrains YouTrack 跨站脚本漏洞 — YouTrack 4.6 Medium2023-06-12
CVE-2023-29385 WordPress WP Abstracts Plugin <= 2.6.2 is vulnerable to Cross Site Scripting (XSS) — WP Abstracts 7.1 High2023-06-12
CVE-2023-28933 WordPress Call Now Accessibility Button Plugin <= 1.1 is vulnerable to Cross Site Scripting (XSS) — Call Now Accessibility Button 5.9 Medium2023-06-12
CVE-2023-34026 WordPress This Day In History Plugin <= 3.10.1 is vulnerable to Cross Site Scripting (XSS) — This Day In History 7.1 High2023-06-12
CVE-2023-32118 WordPress SALERT Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — SALERT – Fake Sales Notification WooCommerce 7.1 High2023-06-12
CVE-2023-31236 WordPress Scripts n Styles Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS) — Scripts n Styles 5.9 Medium2023-06-12
CVE-2023-32961 WordPress Zotpress Plugin <= 7.3.3 is vulnerable to Cross Site Scripting (XSS) — Zotpress 7.1 High2023-06-12
CVE-2023-30745 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS) — IP Metaboxes 5.9 Medium2023-06-12
CVE-2023-30753 WordPress IP Metaboxes Plugin <= 2.1.1 is vulnerable to Cross Site Scripting (XSS) — IP Metaboxes 7.1 High2023-06-12
CVE-2023-23822 WordPress UTM Tracker Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS) — UTM Tracker 5.9 Medium2023-06-12
CVE-2023-23819 WordPress itemprop WP for SERP/SEO Rich snippets Plugin <= 3.5.201706131 is vulnerable to Cross Site Scripting (XSS) — itemprop WP for SERP/SEO Rich snippets 5.9 Medium2023-06-12
CVE-2022-47140 WordPress ARMember Plugin <= 4.0.1 is vulnerable to Cross Site Scripting (XSS) — ARMember 7.1 High2023-06-12
CVE-2022-45827 WordPress Video Contest WordPress Plugin Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS) — Video Contest 5.9 Medium2023-06-12
CVE-2023-23818 WordPress WP Register Profile With Shortcode Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS) — WP Register Profile With Shortcode 5.9 Medium2023-06-12
CVE-2015-10118 cchetanonline WP-CopyProtect wp-copyprotect.php CopyProtect_options_page cross site scripting — WP-CopyProtect 3.5 Low2023-06-12
CVE-2023-22585 Reflected Cross-Site Scripting in Danfoss AK-EM100 — AK-EM100 9.0 Critical2023-06-11
CVE-2023-22582 Reflected Cross-Site Scripting in Danfoss AK-EM100 — AK-EM100 9.0 Critical2023-06-11
CVE-2023-3191 Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass — nilsteampassnet/teampass 5.4 -2023-06-10
CVE-2023-34245 Cross site scripting (XSS) in @udecode/plate-link — plate 8.1 High2023-06-09
CVE-2023-2121 Vault’s KV Diff Viewer Allowed for HTML Injection — Vault 4.3 Medium2023-06-09
CVE-2023-3184 SourceCodester Sales Tracker Management System cross site scripting — Sales Tracker Management System 2.4 Low2023-06-09
CVE-2023-3183 SourceCodester Performance Indicator System addproduct.php cross site scripting — Performance Indicator System 3.5 Low2023-06-09
CVE-2023-2184 WP Responsive Tabs horizontal vertical and accordion Tabs <= 1.1.15 - Reflected Cross-Site Scripting — WP Responsive Tabs horizontal vertical and accordion Tabs 6.1 Medium2023-06-09
CVE-2023-2031 Locatoraid Store Locator <= 3.9.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Locatoraid Store Locator 5.4 Medium2023-06-09
CVE-2023-2289 wordpress vertical image slider plugin <= 1.2.16 - Reflected Cross-Site Scripting — Vertical Image Slider 6.1 Medium2023-06-09
CVE-2023-1404 Weaver Show Posts <= 1.6 - Authenticated(Contributor+) Stored Cross-Site Scripting via Display Name — Weaver Show Posts 6.4 Medium2023-06-09
CVE-2023-2558 WPCS – WordPress Currency Switcher Professional <= 1.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — WPCS – WordPress Currency Switcher Professional 6.4 Medium2023-06-09

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21552 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.