Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-1147 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress — flatpressblog/flatpress 5.4 -2023-03-02
CVE-2023-1148 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress — flatpressblog/flatpress 5.4 -2023-03-02
CVE-2023-1131 SourceCodester Computer Parts Sales and Inventory System customer.php cross site scripting — Computer Parts Sales and Inventory System 3.5 Low2023-03-01
CVE-2023-0594 Grafana 跨站脚本漏洞 — Grafana 7.3 High2023-03-01
CVE-2023-0507 Grafana 跨站脚本漏洞 — Grafana 7.3 High2023-03-01
CVE-2023-1113 SourceCodester Simple Payroll System POST Parameter cross site scripting — Simple Payroll System 2.4 Low2023-03-01
CVE-2023-1104 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress — flatpressblog/flatpress 5.4 -2023-03-01
CVE-2023-1115 Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore 5.4 -2023-03-01
CVE-2023-1116 Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore 5.4 -2023-03-01
CVE-2023-1117 Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore 5.4 -2023-03-01
CVE-2023-25807 DataEase dashboard has a stored XSS vulnerability — dataease 7.2 High2023-02-28
CVE-2023-1080 GN Publisher <= 1.5.5 - Reflected Cross-Site Scripting — GN Publisher: Google News Compatible RSS Feeds 6.1 Medium2023-02-28
CVE-2023-1081 Cross-site Scripting (XSS) - Stored in microweber/microweber — microweber/microweber 4.8 -2023-02-28
CVE-2023-26042 HTML/XSS injection possibilities in Part-DB — Part-DB-server 6.1 Medium2023-02-27
CVE-2022-45137 WAGO: Reflective Cross-Site Scripting — Compact Controller CC100 (751-9301) 6.1 Medium2023-02-27
CVE-2023-22860 IBM Cloud Pak for Business Automation cross-site scripting — Cloud Pak for Business Automation 5.4 Medium2023-02-27
CVE-2023-1067 Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore 5.4 -2023-02-27
CVE-2023-1042 SourceCodester Online Pet Shop We App update_status.php cross site scripting — Online Pet Shop We App 3.5 Low2023-02-26
CVE-2023-1041 SourceCodester Simple Responsive Tourism Website rate_review.php cross site scripting — Simple Responsive Tourism Website 3.5 Low2023-02-26
CVE-2023-1036 SourceCodester Dental Clinic Appointment Reservation System POST Parameter signup.php cross site scripting — Dental Clinic Appointment Reservation System 4.3 Medium2023-02-26
CVE-2019-25105 dro.pm fileman.php cross site scripting — dro.pm 3.5 Low2023-02-26
CVE-2023-25825 ZoneMinder contains Cross-site Scripting via log viewing — zoneminder 7.7 High2023-02-25
CVE-2023-1030 SourceCodester/code-projects Online Boat Reservation System POST Parameter login.php cross site scripting — Online Boat Reservation System 3.5 Low2023-02-24
CVE-2023-0586 All in One SEO Pack <= 4.2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting — All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic 6.4 Medium2023-02-24
CVE-2023-0585 All in One SEO Pack <= 4.2.9 - Authenticated (Administrator+) Stored Cross-Site Scripting — All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic 4.4 Medium2023-02-24
CVE-2023-1006 SourceCodester Medical Certificate Generator App New Record cross site scripting — Medical Certificate Generator App 3.5 Low2023-02-24
CVE-2023-0995 Cross-site Scripting (XSS) - Stored in unilogies/bumsys — unilogies/bumsys 5.4 -2023-02-24
CVE-2022-48344 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 5.4 Medium2023-02-23
CVE-2022-48343 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 5.4 Medium2023-02-23
CVE-2023-0987 SourceCodester Online Pizza Ordering System cross site scripting — Online Pizza Ordering System 3.5 Low2023-02-23

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.