Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-0743 Cross-site Scripting (XSS) - Generic in answerdev/answer — answerdev/answer 5.4 -2023-02-08
CVE-2023-0747 Cross-site Scripting (XSS) - Stored in btcpayserver/btcpayserver — btcpayserver/btcpayserver 5.5 Medium2023-02-08
CVE-2023-0731 Interactive Geo Maps <= 1.5.9 - Authenticated (Editor+) Stored Cross-Site Scripting — MapGeo – Interactive Geo Maps 6.4 Medium2023-02-07
CVE-2022-47418 LogicalDOC Document Version Comment Stored XSS — LogicalDOC Enterprise 5.4 -2023-02-07
CVE-2022-47417 LogicalDOC Document File Name Stored XSS — LogicalDOC Enterprise 5.4 -2023-02-07
CVE-2022-47419 Mayan EDMS Tag XSS — Mayan EDMS 5.4 -2023-02-07
CVE-2022-47416 LogicalDOC Chat Stored XSS — LogicalDOC Enterprise 5.4 -2023-02-07
CVE-2022-47414 OpenKM 跨站脚本漏洞 — OpenKM 5.4 -2023-02-07
CVE-2022-47413 OpenKM 跨站脚本漏洞 — OpenKM 5.4 -2023-02-07
CVE-2022-47415 LogicalDOC Messaging Stored XSS — LogicalDOC Enterprise 5.4 -2023-02-07
CVE-2023-0732 SourceCodester Online Eyewear Shop POST Request Users.php registration cross site scripting — Online Eyewear Shop 3.5 Low2023-02-07
CVE-2022-47412 ONLYOFFICE Workspace Search Stored XSS — Workspace 5.4 -2023-02-07
CVE-2023-24814 Persisted Cross-Site Scripting in Frontend Rendering in typo3 — typo3 8.8 High2023-02-07
CVE-2022-41311 MOXA SDS-3008 跨站脚本漏洞 — SDS-3008 Series Industrial Ethernet Switch 5.4 -2023-02-07
CVE-2022-41312 MOXA SDS-3008 跨站脚本漏洞 — SDS-3008 Series Industrial Ethernet Switch 5.4 -2023-02-07
CVE-2022-41313 MOXA SDS-3008 跨站脚本漏洞 — SDS-3008 Series Industrial Ethernet Switch 5.4 -2023-02-07
CVE-2015-10075 Custom-Content-Width custom-content-width.php register_settings cross site scripting — Custom-Content-Width 2.6 Low2023-02-07
CVE-2015-10074 OpenSeaMap online_chart index.php init cross site scripting — online_chart 3.5 Low2023-02-07
CVE-2022-21948 paste: XSS on the image upload function — paste 4.3 Medium2023-02-07
CVE-2022-45441 Zyxel NBG-418N v2 跨站脚本漏洞 — NBG-418N v2 firmware 6.1 Medium2023-02-07
CVE-2023-0736 Cross-site Scripting (XSS) - Stored in wallabag/wallabag — wallabag/wallabag 5.4 -2023-02-07
CVE-2023-23942 Self reflected HTML injection in Desktop client — security-advisories 5.4 Medium2023-02-06
CVE-2017-20177 WangGuard Plugin WGG User List wangguard-user-info.php wangguard_users_info cross site scripting — WangGuard Plugin 3.5 Low2023-02-06
CVE-2015-10073 tinymighty WikiSEO Meta Property Tag WikiSEO.body.php modifyHTML cross site scripting — WikiSEO 3.5 Low2023-02-06
CVE-2022-4902 eXo Chat Application Mention ExoChatMessageComposer.vue cross site scripting — Chat Application 3.5 Low2023-02-06
CVE-2022-29416 WordPress Afterpay Gateway for WooCommerce Plugin <= 3.5.0 is vulnerable to Cross Site Scripting (XSS) — Afterpay Gateway for WooCommerce 4.7 Medium2023-02-06
CVE-2017-20176 ciubotaru share-on-diaspora new_window.php cross site scripting — share-on-diaspora 3.5 Low2023-02-06
CVE-2023-23849 Synopsys Coverity Connect 跨站脚本漏洞 — Coverity 6.1 -2023-02-06
CVE-2017-20175 DaSchTour matomo-mediawiki-extension Username Piwik.hooks.php cross site scripting — matomo-mediawiki-extension 2.6 Low2023-02-05
CVE-2023-22849 Apache Sling App CMS: XSS in CMS Reference / UI Components — Apache Sling App CMS 5.4 -2023-02-04

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.