Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21548

21548 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-0432 CVE-2023-0432 — DX-2100-L1-CN 8.8 -2023-03-31
CVE-2023-1772 DataGear Diagram Type cross site scripting — DataGear 3.5 Low2023-03-31
CVE-2023-1771 SourceCodester Grade Point Average GPA Calculator Master.php get_scale cross site scripting — Grade Point Average GPA Calculator 3.5 Low2023-03-31
CVE-2023-1776 Stored XSS via SVG attachment on Boards — Mattermost 7.3 High2023-03-31
CVE-2023-1060 XSS in YKM CRM — YKM CRM 6.1 Medium2023-03-31
CVE-2023-1761 Cross-site Scripting in thorsten/phpmyfaq — thorsten/phpmyfaq 6.3 Medium2023-03-31
CVE-2023-1754 Improper Neutralization of Input During Web Page Generation in thorsten/phpmyfaq — thorsten/phpmyfaq 3.8 -2023-03-31
CVE-2023-1755 Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq — thorsten/phpmyfaq 5.4 -2023-03-31
CVE-2023-1759 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq — thorsten/phpmyfaq 5.4 -2023-03-31
CVE-2023-1760 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq — thorsten/phpmyfaq 5.4 -2023-03-31
CVE-2023-1746 Dreamer CMS File Upload cross site scripting — Dreamer CMS 3.5 Low2023-03-30
CVE-2023-1743 SourceCodester Grade Point Average GPA Calculator index.php cross site scripting — Grade Point Average GPA Calculator 3.5 Low2023-03-30
CVE-2023-24399 WordPress Ocean Extra Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS) — Ocean Extra 5.5 Medium2023-03-30
CVE-2023-25040 WordPress Shortcodes Ultimate Plugin <= 5.12.6 is vulnerable to Cross Site Scripting (XSS) — WordPress Shortcodes Plugin — Shortcodes Ultimate 6.5 Medium2023-03-30
CVE-2023-23681 WordPress Image Hover Effects For WPBakery Page Builder Plugin <= 4.0 is vulnerable to Cross Site Scripting (XSS) — Image Hover Effects For WPBakery Page Builder 6.5 Medium2023-03-30
CVE-2023-23677 WordPress GTmetrix for WordPress Plugin <= 0.4.5 is vulnerable to Cross Site Scripting (XSS) — GTmetrix for WordPress 3.8 Low2023-03-30
CVE-2023-23675 WordPress WP Smart Preloader Plugin <= 1.15 is vulnerable to Cross Site Scripting (XSS) — WP Smart Preloader 5.9 Medium2023-03-30
CVE-2023-23670 WordPress Fancy Comments WordPress Plugin <= 1.2.10 is vulnerable to Cross Site Scripting (XSS) — Fancy Comments WordPress 6.5 Medium2023-03-30
CVE-2023-22705 WordPress Welcart e-Commerce Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS) — Welcart e-Commerce 7.1 High2023-03-29
CVE-2022-47602 WordPress WP Table Manager Plugin <= 3.5.2 is vulnerable to Cross Site Scripting (XSS) — WP Table Manager 6.5 Medium2023-03-29
CVE-2022-47603 WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS) — Gallery – Image and Video Gallery with Thumbnails 7.1 High2023-03-29
CVE-2022-47607 WordPress Usersnap Plugin <= 4.16 is vulnerable to Cross Site Scripting (XSS) — Usersnap 5.9 Medium2023-03-29
CVE-2022-47610 WordPress Simple Image Popup Plugin <= 1.3.6 is vulnerable to Cross Site Scripting (XSS) — Simple Image Popup 5.9 Medium2023-03-29
CVE-2022-47613 WordPress AI ChatBot Plugin <= 4.3.0 is vulnerable to Cross Site Scripting (XSS) — AI ChatBot 5.9 Medium2023-03-29
CVE-2023-27489 Stored cross site scripting via SVG file upload in Kiwi TCMS — Kiwi 7.6 High2023-03-29
CVE-2023-26292 Forcepoint Cloud Security Gateway 跨站脚本漏洞 — Cloud Security Gateway (CSG) 6.1 Medium2023-03-29
CVE-2023-26291 Forcepoint Cloud Security Gateway 跨站脚本漏洞 — Cloud Security Gateway (CSG) 6.1 Medium2023-03-29
CVE-2023-26290 Forcepoint Cloud Security Gateway 跨站脚本漏洞 — Cloud Security Gateway (CSG) 6.1 Medium2023-03-29
CVE-2022-47596 WordPress Media Library Categories Plugin <= 1.9.9 is vulnerable to Cross Site Scripting (XSS) — Media Library Categories 5.9 Medium2023-03-29
CVE-2023-1575 Mega Main Menu <= 2.2.2 - Authenticated (Administrator+) Cross-Site Scripting — Mega Main Menu 5.5 Medium2023-03-29

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21548 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.