Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-46858 WordPress Product Specifications for Woocommerce Plugin <= 0.6.0 is vulnerable to Cross Site Scripting (XSS) — Product Specifications for Woocommerce 7.1 High2023-05-09
CVE-2022-46864 WordPress Woocommerce Custom Checkout Fields Editor With Drag & Drop Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS) — Woocommerce Custom Checkout Fields Editor With Drag & Drop 7.1 High2023-05-09
CVE-2022-46822 WordPress WooCommerce JazzCash Gateway Plugin Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS) — WooCommerce JazzCash Gateway Plugin 7.1 High2023-05-09
CVE-2023-23647 WordPress Team Member Plugin <= 4.4 is vulnerable to Cross Site Scripting (XSS) — Team Member – Team with Slider 5.9 Medium2023-05-09
CVE-2023-24372 WordPress Simple Custom Author Profiles Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS) — Simple Custom Author Profiles 5.9 Medium2023-05-09
CVE-2023-23734 WordPress Userlike – WordPress Live Chat plugin Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS) — Userlike – WordPress Live Chat plugin 5.9 Medium2023-05-09
CVE-2023-23733 WordPress Lazy Social Comments Plugin <= 2.0.4 is vulnerable to Cross Site Scripting (XSS) — Lazy Social Comments 5.9 Medium2023-05-09
CVE-2023-23732 WordPress Disqus Conditional Load Plugin <= 11.0.6 is vulnerable to Cross Site Scripting (XSS) — Disqus Conditional Load 5.9 Medium2023-05-09
CVE-2023-23862 WordPress Vertical scroll recent post Plugin <= 14.0 is vulnerable to Cross Site Scripting (XSS) — Vertical scroll recent post 6.5 Medium2023-05-09
CVE-2023-23884 WordPress Kanban Boards for WordPress Plugin <= 2.5.20 is vulnerable to Cross Site Scripting (XSS) — Kanban Boards for WordPress 5.9 Medium2023-05-09
CVE-2023-23883 WordPress WP Content Filter – Censor All Offensive Content From Your Site Plugin <= 3.0.1 is vulnerable to Cross Site Scripting (XSS) — WP Content Filter 5.9 Medium2023-05-09
CVE-2023-23664 WordPress ConvertBox Auto Embed WordPress plugin Plugin <= 1.0.19 is vulnerable to Cross Site Scripting (XSS) — ConvertBox Auto Embed WordPress plugin 6.5 Medium2023-05-09
CVE-2023-23793 WordPress Read More Without Refresh Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS) — Read More Without Refresh 5.9 Medium2023-05-09
CVE-2022-41640 WordPress Wholesale Suite Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS) — Wholesale Suite 6.5 Medium2023-05-09
CVE-2023-23863 WordPress TreePress – Easy Family Trees & Ancestor Profiles Plugin <= 2.0.22 is vulnerable to Cross Site Scripting (XSS) — TreePress – Easy Family Trees & Ancestor Profiles 5.9 Medium2023-05-09
CVE-2023-31407 Cross-Site Scripting (XSS) vulnerability in SAP Business Planning and Consolidation — SAP Business Planning and Consolidation 5.4 Medium2023-05-09
CVE-2023-31406 Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence Platform 6.1 Medium2023-05-09
CVE-2023-30743 Improper Neutralization of Input in SAPUI5 — SAPUI5 7.1 High2023-05-09
CVE-2023-30742 Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI) — SAP CRM (WebClient UI) 6.1 Medium2023-05-09
CVE-2023-30741 Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence Platform 6.1 Medium2023-05-09
CVE-2023-29188 Cross-Site Scripting (XSS) vulnerability in SAP CRM WebClient UI — SAP CRM WebClient UI 5.4 Medium2023-05-09
CVE-2023-2591 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in nilsteampassnet/teampass — nilsteampassnet/teampass 8.8 -2023-05-09
CVE-2023-22710 WordPress Return and Warranty Management System for WooCommerce Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS) — Return and Warranty Management System for WooCommerce 7.1 High2023-05-08
CVE-2023-23894 WordPress Surbma | GDPR Proof Cookie Consent & Notice Bar Plugin <= 17.5.3 is vulnerable to Cross Site Scripting (XSS) — Surbma | GDPR Proof Cookie Consent & Notice Bar 6.5 Medium2023-05-08
CVE-2023-24376 WordPress WP Simple Events Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) — WP Simple Events 5.9 Medium2023-05-08
CVE-2023-30860 WWBN/AVideo stored XSS vulnerability leads to takeover of any user's account, including admin's account — AVideo 8.0 High2023-05-08
CVE-2023-24408 WordPress Ecwid Shopping Cart Plugin <= 6.11.4 is vulnerable to Cross Site Scripting (XSS) — Ecwid Ecommerce Shopping Cart 6.5 Medium2023-05-08
CVE-2022-45065 WordPress SEO Plugin by Squirrly SEO Plugin <= 12.1.20 is vulnerable to Cross Site Scripting (XSS) — SEO Plugin by Squirrly SEO 7.1 High2023-05-08
CVE-2023-28493 WordPress Newsmag Theme <= 2.4.4 is vulnerable to Cross Site Scripting (XSS) — NewsMag 6.5 Medium2023-05-08
CVE-2022-47439 WordPress Open Graphite Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS) — Open Graphite 7.1 High2023-05-08

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.