Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21546

21546 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-25018 Rifartek IOT Wall - Reflected XSS — IOT Wall 5.4 Medium2023-03-27
CVE-2023-1635 OTCMS apiRun.php AutoRun cross site scripting — OTCMS 3.5 Low2023-03-25
CVE-2023-28435 Dataease file upload interface does not verify permission or file type — dataease 6.5 Medium2023-03-24
CVE-2023-1616 XiaoBingBy TeaCMS Article Title cross site scripting — TeaCMS 3.5 Low2023-03-24
CVE-2023-1613 Rebuild publish cross site scripting — Rebuild 3.5 Low2023-03-23
CVE-2023-1609 Zhong Bang CRMEB Java save cross site scripting — CRMEB Java 3.5 Low2023-03-23
CVE-2023-25456 WordPress Klaviyo Plugin <= 3.0.7 is vulnerable to Cross Site Scripting (XSS) — Klaviyo 5.9 Medium2023-03-23
CVE-2023-26008 WordPress Top 10 Plugin <= 3.2.4 is vulnerable to Cross Site Scripting (XSS) — Top 10 – Popular posts plugin for WordPress 5.9 Medium2023-03-23
CVE-2023-25992 WordPress CM Answers Plugin <= 3.1.9 is vulnerable to Cross Site Scripting (XSS) — CM Answers 5.9 Medium2023-03-23
CVE-2023-23707 WordPress Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files Plugin <= 2.7.1 is vulnerable to Cross Site Scripting (XSS) — Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files 5.9 Medium2023-03-23
CVE-2022-47145 WordPress Blockonomics Plugin <= 3.5.7 is vulnerable to Cross Site Scripting (XSS) — WordPress Bitcoin Payments – Blockonomics 7.1 High2023-03-23
CVE-2022-47173 WordPress Connect Contact Form 7, WooCommerce To Google Sheets & Other Platforms – Advanced Form Integration Plugin <= 1.62.0 is vulnerable to Cross Site Scripting (XSS) — Connect Contact Form 7, WooCommerce To Google Sheets & Other Platforms – Advanced Form Integration 5.9 Medium2023-03-23
CVE-2022-47589 WordPress CTT Expresso para WooCommerce Plugin <= 3.2.11 is vulnerable to Cross Site Scripting (XSS) — CTT Expresso para WooCommerce 5.9 Medium2023-03-23
CVE-2023-22702 WordPress WPMobile.App — Android and iOS Mobile Application Plugin <= 11.13 is vulnerable to Cross Site Scripting (XSS) — WPMobile.App — Android and iOS Mobile Application 6.5 Medium2023-03-23
CVE-2023-23722 WordPress WP eBay Product Feeds Plugin <= 3.3.1 is vulnerable to Cross Site Scripting (XSS) — WP eBay Product Feeds 5.9 Medium2023-03-23
CVE-2023-23728 WordPress WP Flipclock Plugin <= 1.7.4 is vulnerable to Cross Site Scripting (XSS) — WP Flipclock 6.5 Medium2023-03-23
CVE-2023-23864 WordPress Very Simple Google Maps Plugin <= 2.8.4 is vulnerable to Cross Site Scripting (XSS) — Very Simple Google Maps 6.5 Medium2023-03-23
CVE-2023-23650 WordPress MainWP Code Snippets Extension Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS) — MainWP Code Snippets Extension 6.5 Medium2023-03-23
CVE-2023-22712 WordPress TemplatesNext ToolKit Plugin <= 3.2.7 is vulnerable to Cross Site Scripting (XSS) — TemplatesNext ToolKit 6.5 Medium2023-03-23
CVE-2023-22715 WordPress WP-CommentNavi Plugin <= 1.12.1 is vulnerable to Cross Site Scripting (XSS) — WP-CommentNavi 5.9 Medium2023-03-23
CVE-2023-22716 WordPress OOPSpam Anti-Spam Plugin <= 1.1.35 is vulnerable to Cross Site Scripting (XSS) — OOPSpam Anti-Spam 5.9 Medium2023-03-23
CVE-2022-47431 WordPress Open RDW kenteken voertuiginformatie Plugin <= 2.0.14 is vulnerable to Cross Site Scripting (XSS) — Open RDW kenteken voertuiginformatie 7.1 High2023-03-23
CVE-2023-28422 WordPress Event Manager for WooCommerce Plugin <= 3.8.6 is vulnerable to Cross Site Scripting (XSS) — Event Manager and Tickets Selling Plugin for WooCommerce 5.9 Medium2023-03-23
CVE-2023-22704 WordPress teachPress Plugin <= 8.1.8 is vulnerable to Cross Site Scripting (XSS) — teachPress 7.1 High2023-03-23
CVE-2022-44742 WordPress Community Events Plugin <= 1.4.8 is vulnerable to Cross Site Scripting (XSS) — Community Events 4.8 Medium2023-03-23
CVE-2022-45843 WordPress Smart Slider 3 Plugin <= 3.5.1.9 is vulnerable to Cross Site Scripting (XSS) — Smart Slider 3 5.4 Medium2023-03-23
CVE-2023-1593 SourceCodester Automatic Question Paper Generator System cross site scripting — Automatic Question Paper Generator System 3.5 Low2023-03-23
CVE-2023-1410 Stored XSS in Graphite FunctionDescription tooltip — Grafana 6.2 Medium2023-03-23
CVE-2023-1051 XSS in As Koc Web Report System — Web Report System 6.1 Medium2023-03-23
CVE-2023-28331 Moodle: xss risk when outputting database activity filter data 5.4 -2023-03-23

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21546 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.