Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21548

21548 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-20139 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20140 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20141 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20142 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20143 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20144 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20145 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20146 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20147 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20148 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20149 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20150 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-20151 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities — Cisco Small Business RV Series Router Firmware 6.1 Medium2023-04-05
CVE-2023-1840 Sp*tify Play Button for WordPress <= 2.07 - Authenticated (Administrator+) Stored Cross-Site Scripting — Sp*tify Play Button for WordPress 4.4 Medium2023-04-04
CVE-2023-23977 WordPress Heateor Social Comments Plugin <= 1.6.1 is vulnerable to Cross Site Scripting (XSS) — WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments 6.5 Medium2023-04-04
CVE-2023-23870 WordPress Responsive Vertical Icon Menu Plugin <= 1.5.8 is vulnerable to Cross Site Scripting (XSS) — Responsive Vertical Icon Menu 5.9 Medium2023-04-04
CVE-2023-23878 WordPress WP Google Map Plugin Plugin <= 4.3.9 is vulnerable to Cross Site Scripting (XSS) — WordPress Plugin for Google Maps – WP MAPS 5.9 Medium2023-04-04
CVE-2023-23821 WordPress Interactive Polish Map Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS) — Interactive Polish Map 5.9 Medium2023-04-04
CVE-2023-23686 WordPress Simple Staff List Plugin <= 2.2.2 is vulnerable to Cross Site Scripting (XSS) — Simple Staff List 6.5 Medium2023-04-04
CVE-2023-23685 WordPress Portfolio – WordPress Portfolio Plugin Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS) — Portfolio – WordPress Portfolio Plugin 6.5 Medium2023-04-04
CVE-2022-4771 Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') — Pentaho Business Analytics Server 5.4 Medium2023-04-03
CVE-2023-28850 Pimcore Perspective Editor vulnerable to Cross-site Scripting in perspective name — perspective-editor 6.1 Medium2023-04-03
CVE-2023-1766 XSS in Panon — Panon 6.1 Medium2023-04-03
CVE-2023-26529 WordPress DupeOff Plugin <= 1.6 is vulnerable to Cross Site Scripting (XSS) — DupeOff 5.9 Medium2023-04-03
CVE-2023-28836 Wagtail vulnerable to stored Cross-site Scripting attack via ModelAdmin views — wagtail 6.4 Medium2023-04-03
CVE-2023-1799 EyouCMS login.php cross site scripting — EyouCMS 3.5 Low2023-04-02
CVE-2023-1798 EyouCMS login.php cross site scripting — EyouCMS 3.5 Low2023-04-02
CVE-2023-1796 SourceCodester Employee Payslip Generator Create News cross site scripting — Employee Payslip Generator 2.4 Low2023-04-02
CVE-2023-1795 SourceCodester Gadget Works Online Ordering System GET Parameter index.php cross site scripting — Gadget Works Online Ordering System 3.5 Low2023-04-02
CVE-2023-1794 SourceCodester Police Crime Record Management System GET Parameter casedetails.php cross site scripting — Police Crime Record Management System 3.5 Low2023-04-02

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21548 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.