CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-32860	iziModal vulnerable to Cross-site Scripting — iziModal	6.1	Medium	2023-02-20
CVE-2012-10007	madgicweb BuddyStream Plugin ShareBox.php cross site scripting — BuddyStream Plugin	3.5	Low	2023-02-19
CVE-2023-0902	SourceCodester Simple Food Ordering System process_order.php cross site scripting — Simple Food Ordering System	3.5	Low	2023-02-18
CVE-2022-43579	IBM Sterling B2B Integrator Standard Edition cross-site scripting — Sterling B2B Integrator Standard Edition	4.6	Medium	2023-02-17
CVE-2023-22868	IBM Aspera Faspex cross-site scripting — Aspera Faspex	5.4	Medium	2023-02-17
CVE-2023-23921	Moodle: reflected xss risk in some returnurl parameters	6.1	-	2023-02-17
CVE-2023-23922	Moodle: reflected xss risk in blog search	6.1	-	2023-02-17
CVE-2023-0878	Cross-site Scripting (XSS) - Generic in nuxt/framework — nuxt/framework	6.1	-	2023-02-17
CVE-2023-0879	Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver — btcpayserver/btcpayserver	6.3	Medium	2023-02-17
CVE-2023-22638	Fortinet FortiNAC 跨站脚本漏洞 — FortiNAC	6.7	High	2023-02-16
CVE-2022-41334	Fortinet FortiOS 跨站脚本漏洞 — FortiOS	8.6	High	2023-02-16
CVE-2022-30304	Fortinet FortiWeb 跨站脚本漏洞 — FortiAnalyzer	4.2	Medium	2023-02-16
CVE-2022-38376	Fortinet FortiNAC 跨站脚本漏洞 — FortiNAC	5.8	Medium	2023-02-16
CVE-2023-20085	Cisco Identity Services Engine 跨站脚本漏洞 — Cisco Identity Services Engine Software	6.1	Medium	2023-02-16
CVE-2023-20053	Cisco Nexus Dashboard 跨站脚本漏洞 — Cisco Nexus Dashboard	6.1	Medium	2023-02-16
CVE-2023-0840	PHPCrazy cross site scripting — PHPCrazy	3.5	Low	2023-02-15
CVE-2022-25978	memos 跨站脚本漏洞 — github.com/usememos/memos/server	5.4	Medium	2023-02-15
CVE-2022-45436	Stored cross-site scripting vulnerability in network maps editor feature — Pandora FMS	6.1	Medium	2023-02-15
CVE-2022-45437	Stored cross-site scripting vulnerability in the reporting dashboard module — Pandora FMS	6.5	Medium	2023-02-15
CVE-2023-23467	Media CP Media Control Panel – Reflected XSS — Media Control Panel	8.1	High	2023-02-15
CVE-2023-21564	Azure DevOps Server Cross-Site Scripting Vulnerability — Azure DevOps Server 2022	7.1	High	2023-02-14
CVE-2023-21571	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.1	5.4	Medium	2023-02-14
CVE-2023-21570	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.1	5.4	Medium	2023-02-14
CVE-2023-21807	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.1	6.5	Medium	2023-02-14
CVE-2023-21806	Power BI Report Server Spoofing Vulnerability — Power BI Report Server - January 2023	8.2	High	2023-02-14
CVE-2023-22933	Persistent Cross-Site Scripting through the ‘module’ Tag in a View in Splunk Enterprise — Splunk Enterprise	8.0	High	2023-02-14
CVE-2023-22932	Persistent Cross-Site Scripting through a Base64-encoded Image in a View in Splunk Enterprise — Splunk Enterprise	8.0	High	2023-02-14
CVE-2022-4286	Reflected Cross-Site Scripting Vulnerabilities in Automation Runtime — B&R Automation Runtime	6.1	Medium	2023-02-14
CVE-2023-25614	SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)	6.1	Medium	2023-02-14
CVE-2023-24529	BSP 跨站脚本漏洞 — NetWeaver AS ABAP (Business Server Pages application)	6.1	Medium	2023-02-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536