Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-26263 Odoo 跨站脚本漏洞 — Odoo Community 6.1 -2023-04-25
CVE-2021-44775 Odoo 跨站脚本漏洞 — Odoo Community 6.1 -2023-04-25
CVE-2021-44461 Odoo 跨站脚本漏洞 — Odoo Enterprise 6.1 -2023-04-25
CVE-2021-45071 Odoo 跨站脚本漏洞 — Odoo Community 6.1 -2023-04-25
CVE-2023-30838 PrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method — PrestaShop 8.6 High2023-04-25
CVE-2022-47608 WordPress Quick Contact Form Plugin <= 8.0.3.1 is vulnerable to Cross Site Scripting (XSS) — Quick Contact Form 5.9 Medium2023-04-25
CVE-2023-25484 WordPress Simple Yearly Archive Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS) — Simple Yearly Archive 5.9 Medium2023-04-25
CVE-2023-25479 WordPress Podlove Subscribe button Plugin <= 1.3.7 is vulnerable to Cross Site Scripting (XSS) — Podlove Subscribe button 5.9 Medium2023-04-25
CVE-2023-25490 WordPress Archivist – Custom Archive Templates Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS) — Archivist – Custom Archive Templates 5.9 Medium2023-04-25
CVE-2023-27619 WordPress Regina Lite Theme <= 2.0.7 is vulnerable to Cross Site Scripting (XSS) — Regina Lite 5.4 Medium2023-04-25
CVE-2023-25710 WordPress Click to Call or Chat Buttons Plugin <= 1.4.0 is vulnerable to Cross Site Scripting (XSS) — Click to Call or Chat Buttons 5.9 Medium2023-04-25
CVE-2022-45837 WordPress 微信机器人高级版 Plugin <= 6.0.1 is vulnerable to Cross Site Scripting (XSS) — 微信机器人高级版 7.1 High2023-04-25
CVE-2023-30627 jellyfin-web has a stored cross-site scripting vulnerability in devices.js — jellyfin-web 9.1 Critical2023-04-24
CVE-2012-10014 Kau-Boy Backend Localization Plugin backend_localization.php localize_backend cross site scripting — Backend Localization Plugin 3.5 Low2023-04-24
CVE-2012-10013 Kau-Boy Backend Localization Plugin backend_localization.php cross site scripting — Backend Localization Plugin 3.5 Low2023-04-24
CVE-2022-41612 WordPress Similar Posts Plugin <= 3.1.6 is vulnerable to Cross Site Scripting (XSS) — Similar Posts 5.9 Medium2023-04-24
CVE-2022-47598 WordPress WP Super Popup Plugin <= 1.1.2 is vulnerable to Cross Site Scripting (XSS) — WP Super Popup 5.9 Medium2023-04-24
CVE-2022-47158 WordPress alfred24 Click & Collect Plugin <= 1.1.7 is vulnerable to Cross Site Scripting (XSS) — alfred24 Click & Collect 5.9 Medium2023-04-24
CVE-2022-45084 WordPress Loginizer Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS) — Loginizer 7.1 Medium2023-04-24
CVE-2023-23892 WordPress M Chart Plugin <= 1.9.4 is vulnerable to Cross Site Scripting (XSS) — M Chart 6.5 Medium2023-04-24
CVE-2023-27990 Zyxel ATP 跨站脚本漏洞 — ATP series firmware 4.8 Medium2023-04-24
CVE-2023-27614 WordPress Motor Racing League Plugin <= 1.9.9 is vulnerable to Cross Site Scripting (XSS) — Motor Racing League 5.9 Medium2023-04-23
CVE-2023-27425 WordPress Electric Studio Client Login Plugin <= 0.8.1 is vulnerable to Cross Site Scripting (XSS) — Electric Studio Client Login 5.9 Medium2023-04-23
CVE-2023-25451 WordPress CPO Content Types Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS) — CPO Content Types 5.9 Medium2023-04-23
CVE-2023-23806 WordPress WordPress Custom Settings Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) — Custom Settings 5.9 Medium2023-04-23
CVE-2023-23816 WordPress Sitemap Index Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS) — Sitemap Index 5.9 Medium2023-04-23
CVE-2023-23817 WordPress Simple PDF Viewer Plugin <= 1.9 is vulnerable to Cross Site Scripting (XSS) — Simple PDF Viewer 6.5 Medium2023-04-23
CVE-2023-23827 WordPress Google Maps v3 Shortcode Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — Google Maps v3 Shortcode 6.5 Medium2023-04-23
CVE-2023-23717 WordPress Portfolio Slideshow Plugin <= 1.13.0 is vulnerable to Cross Site Scripting (XSS) — Portfolio Slideshow 6.5 Medium2023-04-23
CVE-2023-23832 WordPress Ultimate WP Query Search Filter Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS) — Ultimate WP Query Search Filter 6.5 Medium2023-04-23

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.