Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-46819 WordPress Continuous announcement scroller Plugin <= 13.0 is vulnerable to Cross Site Scripting (XSS) — Continuous announcement scroller 5.9 Medium2023-05-10
CVE-2022-33961 WordPress YellowPencil Visual CSS Style Editor Plugin <= 7.5.8 is vulnerable to Cross Site Scripting (XSS) — Visual CSS Style Editor 4.0 Medium2023-05-10
CVE-2022-32970 WordPress Themify Portfolio Post Plugin <= 1.2.4 is vulnerable to Cross Site Scripting (XSS) — Themify Portfolio Post 4.1 Medium2023-05-10
CVE-2023-27455 WordPress Update Image Tag Alt Attribute Plugin <= 2.4.5 is vulnerable to Cross Site Scripting (XSS) — Update Image Tag Alt Attribute 7.1 High2023-05-10
CVE-2023-23794 WordPress Semalt Blocker Plugin <= 1.1.3 is vulnerable to Cross Site Scripting (XSS) — Semalt Blocker 5.9 Medium2023-05-10
CVE-2023-23873 WordPress BBSpoiler Plugin <= 2.01 is vulnerable to Cross Site Scripting (XSS) — BBSpoiler 6.5 Medium2023-05-10
CVE-2023-27419 WordPress Viable blog Theme <= 1.1.4 is vulnerable to Cross Site Scripting (XSS) — Viable Blog 7.1 High2023-05-10
CVE-2023-30746 WordPress Booqable Rental Plugin Plugin <= 2.4.15 is vulnerable to Cross Site Scripting (XSS) — Booqable Rental Plugin 5.9 Medium2023-05-10
CVE-2023-22696 WordPress Affiliate Links Lite Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS) — Affiliate Links Lite 6.5 Medium2023-05-10
CVE-2023-29101 WordPress Betheme Theme <= 26.7.5 is vulnerable to Cross Site Scripting (XSS) — Betheme 7.1 High2023-05-10
CVE-2023-24406 WordPress Simple Popup Images Plugin <= 1.8.6 is vulnerable to Cross Site Scripting (XSS) — Simple PopUp 5.9 Medium2023-05-10
CVE-2023-23701 WordPress Easy Sign Up Plugin <= 3.4.1 is vulnerable to Cross Site Scripting (XSS) — Easy Sign Up 6.5 Medium2023-05-10
CVE-2023-22711 WordPress IMPress Listings Plugin <= 2.6.2 is vulnerable to Cross Site Scripting (XSS) — IMPress Listings 6.5 Medium2023-05-10
CVE-2023-24418 WordPress Tiny carousel horizontal slider plus Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS) — Tiny carousel horizontal slider plus 5.9 Medium2023-05-10
CVE-2023-23812 WordPress Enhanced WP Contact Form Plugin <= 2.2.3 is vulnerable to Cross Site Scripting (XSS) — Enhanced WP Contact Form 5.9 Medium2023-05-10
CVE-2023-23789 WordPress Premmerce Redirect Manager Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS) — Premmerce Redirect Manager 5.9 Medium2023-05-10
CVE-2023-23786 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.3.3 is vulnerable to Cross Site Scripting (XSS) — affiliate-toolkit 5.9 Medium2023-05-10
CVE-2023-23788 WordPress Custom More Link Complete Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS) — Custom More Link Complete 5.9 Medium2023-05-10
CVE-2023-28932 WordPress WPMobile.App Plugin <= 11.20 is vulnerable to Cross Site Scripting (XSS) — WPMobile.App — Android and iOS Mobile Application 5.9 Medium2023-05-10
CVE-2023-24392 WordPress Full Width Banner Slider Wp Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS) — Full Width Banner Slider Wp 7.1 High2023-05-10
CVE-2023-30777 WordPress Advanced Custom Fields / Advanced Custom Fields PRO plugins <= 6.1.5 vulnerable to Cross Site Scripting (XSS) — Advanced Custom Fields Pro 7.1 High2023-05-10
CVE-2023-2614 Cross-site Scripting (XSS) - DOM in pimcore/pimcore — pimcore/pimcore 5.4 -2023-05-10
CVE-2023-2615 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore — pimcore/pimcore 5.4 -2023-05-10
CVE-2023-2616 Cross-site Scripting (XSS) - Generic in pimcore/pimcore — pimcore/pimcore 5.4 -2023-05-10
CVE-2023-2630 Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore 5.4 -2023-05-10
CVE-2023-25831 BUG-000154236 There is a reflected cross-site scripting (XSS) vulnerability in Portal for ArcGIS. — Portal for ArcGIS 6.1 Medium2023-05-09
CVE-2023-25830 BUG-000154662 Reflected XSS vulnerability in Portal for ArcGIS — Portal for ArcGIS 6.1 Medium2023-05-09
CVE-2023-32066 Time Tracker has Stored XSS vulnerability in Week View plugin — timetracker 5.4 Medium2023-05-09
CVE-2023-31144 Craft CMS vulnerable to cross site scripting in RSS feed widget — cms 6.1 Medium2023-05-09
CVE-2022-46844 WordPress PixFields Plugin <= 0.7.0 is vulnerable to Cross Site Scripting (XSS) — PixFields 6.5 Medium2023-05-09

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.