Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-2822 Ellucian Ethos Identity logout cross site scripting — Ethos Identity 4.3 Medium2023-05-20
CVE-2023-2735 Groundhogg <= 2.7.9.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Groundhogg — CRM, Newsletters, and Marketing Automation 4.9 Medium2023-05-20
CVE-2023-1996 Reflected Cross-site Scripting (XSS) vulnerability affecting Release 3DEXPERIENCE R2018x through Release 3DEXPERIENCE R2023x — 3DEXPERIENCE 6.1 Medium2023-05-19
CVE-2023-2814 SourceCodester Class Scheduling System POST Parameter save_teacher.php cross site scripting — Class Scheduling System 3.5 Low2023-05-19
CVE-2023-28529 IBM InfoSphere Information Server 11.7 — InfoSphere Information Server 5.5 Medium2023-05-19
CVE-2023-23667 WordPress Brands for WooCommerce Plugin <= 3.7.0.6 is vulnerable to Cross Site Scripting (XSS) — Brands for WooCommerce 6.5 Medium2023-05-18
CVE-2023-23999 WordPress Google Analytics by Monster Insights Plugin <= 8.14.0 is vulnerable to Cross Site Scripting (XSS) — MonsterInsights 6.5 Medium2023-05-18
CVE-2022-47157 WordPress WP Custom Fields Search Plugin <= 1.2.34 is vulnerable to Cross Site Scripting (XSS) — WP Custom Fields Search 5.9 Medium2023-05-18
CVE-2023-30780 WordPress User IP and Location Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS) — User IP and Location 6.5 Medium2023-05-18
CVE-2023-32515 WordPress Custom Field Suite Plugin <= 2.6.2.1 is vulnerable to Cross Site Scripting (XSS) — Custom Field Suite 5.9 Medium2023-05-18
CVE-2023-31233 WordPress Baidu Tongji generator Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS) — Baidu Tongji generator 5.9 Medium2023-05-18
CVE-2023-30487 WordPress LearnPress Export Import Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS) — LearnPress Export Import 7.1 High2023-05-18
CVE-2023-30868 WordPress CMS Tree Page View Plugin <= 1.6.7 is vulnerable to Cross Site Scripting (XSS) — CMS Tree Page View 7.1 High2023-05-18
CVE-2023-2768 Sucms cross site scripting — Sucms 3.5 Low2023-05-17
CVE-2023-2509 A Cross-Site Scripting(XSS) vulnerability was found on ADM — ADM 7.1 High2023-05-17
CVE-2023-2753 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq — thorsten/phpmyfaq 5.4 -2023-05-17
CVE-2023-2752 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq — thorsten/phpmyfaq 5.4 -2023-05-17
CVE-2023-2740 SourceCodester Guest Management System GET Parameter dateTest.php cross site scripting — Guest Management System 3.5 Low2023-05-16
CVE-2023-2739 Gira HomeServer hslist cross site scripting — HomeServer 4.3 Medium2023-05-16
CVE-2023-29439 WordPress FooGallery Plugin <= 2.2.35 is vulnerable to Cross Site Scripting (XSS) — FooGallery 7.1 High2023-05-16
CVE-2023-23703 WordPress Arconix Shortcodes Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS) — Arconix Shortcodes 6.5 Medium2023-05-16
CVE-2023-23709 WordPress WPJAM Basic Plugin <= 6.2.1 is vulnerable to Cross Site Scripting (XSS) — WPJAM Basic 6.5 Medium2023-05-16
CVE-2023-23720 WordPress Verified Reviews (Avis Vérifiés) Plugin <= 2.3.13 is vulnerable to Cross Site Scripting (XSS) — Verified Reviews (Avis Vérifiés) 5.9 Medium2023-05-16
CVE-2023-23657 WordPress Mail Subscribe List Plugin <= 2.1.9 is vulnerable to Cross Site Scripting (XSS) — Mail Subscribe List 6.5 Medium2023-05-16
CVE-2023-23641 WordPress Uji Popup Plugin <= 1.4.3 is vulnerable to Cross Site Scripting (XSS) — Uji Popup 6.5 Medium2023-05-16
CVE-2023-23727 WordPress Live Chat by Formilla – Real-time Chat & Chatbots Plugin Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS) — Live Chat by Formilla 5.9 Medium2023-05-16
CVE-2023-23676 WordPress File Gallery Plugin <= 1.8.5.3 is vulnerable to Cross Site Scripting (XSS) — File Gallery 6.5 Medium2023-05-16
CVE-2023-23673 WordPress I Recommend This Plugin <= 3.8.3 is vulnerable to Cross Site Scripting (XSS) — I Recommend This 5.9 Medium2023-05-16
CVE-2023-2710 video carousel slider with lightbox <= 1.0.22 - Reflected Cross-Site Scripting — video carousel slider with lightbox 6.1 Medium2023-05-16
CVE-2023-2708 Video Gallery <= 1.0.10 - Reflected Cross-Site Scripting — Video Gallery 6.1 Medium2023-05-16

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.