Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-25458 WordPress TypeSquare Webfonts for ConoHa Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) — TypeSquare Webfonts for ConoHa 5.9 Medium2023-05-04
CVE-2023-2521 NEXTU NEXT-7004N POST Request formFilter cross site scripting — NEXT-7004N 3.5 Low2023-05-04
CVE-2023-30619 XSS in the tooltip via an artifact title — tuleap 5.4 Medium2023-05-04
CVE-2023-26010 WordPress WPMobile.App Plugin <= 11.18 is vulnerable to Cross Site Scripting (XSS) — WPMobile.App 5.9 Medium2023-05-04
CVE-2023-26012 WordPress Custom Login Page Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS) — Custom Login Page 5.9 Medium2023-05-04
CVE-2023-26016 WordPress Simple Portfolio Gallery Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS) — Simple Portfolio Gallery 5.9 Medium2023-05-04
CVE-2022-45818 WordPress Hero Banner Ultimate Plugin <= 1.3.4 is vulnerable to Cross Site Scripting (XSS) — Hero Banner Ultimate 6.5 Medium2023-05-04
CVE-2023-25962 WordPress Accordions Plugin <= 2.3.0 is vulnerable to Cross Site Scripting (XSS) — Accordion – Multiple Accordion or FAQs Builder 5.9 Medium2023-05-04
CVE-2023-22637 Fortinet FortiNAC 跨站脚本漏洞 — FortiNAC 5.9 Medium2023-05-03
CVE-2023-25827 Cross-site Scripting in OpenTSDB — OpenTSDB 8.2 High2023-05-03
CVE-2023-26017 WordPress Jobs for WordPress Plugin <= 2.5.10.2 is vulnerable to Cross Site Scripting (XSS) — Jobs for WordPress 5.9 Medium2023-05-03
CVE-2023-23830 WordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS) — ProfilePress 7.1 High2023-05-03
CVE-2023-23875 WordPress Bing Site Verification plugin using Meta Tag Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) — Bing Site Verification plugin using Meta Tag 5.9 Medium2023-05-03
CVE-2023-23881 WordPress Circles Gallery Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS) — Circles Gallery 5.9 Medium2023-05-03
CVE-2023-27378 BIG-IP TMUI XSS vulnerability — BIG-IP 7.5 High2023-05-03
CVE-2023-23808 WordPress Sponsors Carousel Plugin <= 4.02 is vulnerable to Cross Site Scripting (XSS) — Sponsors Carousel 5.9 Medium2023-05-03
CVE-2023-23809 WordPress Stock market charts from finviz Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS) — Stock market charts from finviz 5.9 Medium2023-05-03
CVE-2023-23785 WordPress Exquisite PayPal Donation Plugin <= v2.0.0 is vulnerable to Cross Site Scripting (XSS) — Exquisite PayPal Donation 5.9 Medium2023-05-03
CVE-2022-46852 WordPress WP Table Builder – WordPress Table Plugin Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS) — WP Table Builder 5.9 Medium2023-05-03
CVE-2023-22683 WordPress Clio Grow Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS) — Clio Grow 5.9 Medium2023-05-03
CVE-2023-25979 WordPress Video Gallery – YouTube Gallery Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS) — Video Gallery 5.9 Medium2023-05-03
CVE-2023-23876 WordPress wpDataTables Plugin <= 2.1.49 is vulnerable to Cross Site Scripting (XSS) — wpDataTables 6.5 Medium2023-05-03
CVE-2023-23874 WordPress Ditty Plugin <= 3.0.32 is vulnerable to Cross Site Scripting (XSS) — Ditty 6.5 Medium2023-05-03
CVE-2023-23820 WordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS) — ProfilePress 6.5 Medium2023-05-03
CVE-2023-23708 WordPress Visualizer Plugin <= 3.9.4 is vulnerable to Cross Site Scripting (XSS) — Visualizer: Tables and Charts Manager for WordPress 6.5 Medium2023-05-03
CVE-2023-22713 WordPress Gutenberg Blocks by WordPress Download Manager Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS) — Gutenberg Blocks by WordPress Download Manager 6.5 Medium2023-05-03
CVE-2023-25796 WordPress WP BaiDu Submit Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — WP BaiDu Submit 5.9 Medium2023-05-03
CVE-2023-25798 WordPress Olevmedia Shortcodes Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS) — Olevmedia Shortcodes 6.5 Medium2023-05-03
CVE-2023-25786 WordPress Eyes Only: User Access Shortcode Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS) — Eyes Only: User Access Shortcode 5.9 Medium2023-05-03
CVE-2023-25789 WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS) — Tapfiliate 5.9 Medium2023-05-03

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.