CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2018-25080	MobileDetect Example session_example.php initLayoutType cross site scripting — MobileDetect	3.5	Low	2023-02-04
CVE-2015-10072	NREL api-umbrella-web Flash Message cross site scripting — api-umbrella-web	3.5	Low	2023-02-04
CVE-2023-0676	Cross-site Scripting (XSS) - Reflected in phpipam/phpipam — phpipam/phpipam	6.1	-	2023-02-04
CVE-2023-0677	Cross-site Scripting (XSS) - Reflected in phpipam/phpipam — phpipam/phpipam	6.1	-	2023-02-04
CVE-2022-42908	WEPA Print Away 跨站脚本漏洞 — Wepa Print Away	6.3	Medium	2023-02-03
CVE-2022-42909	WEPA Print Away 安全漏洞 — Wepa Print Away	6.5	Medium	2023-02-03
CVE-2023-0650	YAFNET Signature cross site scripting — YAFNET	3.5	Low	2023-02-02
CVE-2023-0639	TRENDnet TEW-652BRP Web Management Interface get_set.ccp cross site scripting — TEW-652BRP	2.4	Low	2023-02-02
CVE-2023-0599	Rapid7 Metasploit Pro Stored XSS — Metasploit Pro	6.1	Medium	2023-02-01
CVE-2022-47983	IBM InfoSphere Information Server cross-site scripting — InfoSphere Information Server	5.4	Medium	2023-02-01
CVE-2023-23630	Cross-site (XSS) vulnerability with Express API in Eta — eta	8.6	High	2023-02-01
CVE-2023-0606	Cross-site Scripting (XSS) - Reflected in ampache/ampache — ampache/ampache	6.1	-	2023-02-01
CVE-2023-0607	Cross-site Scripting (XSS) - Stored in projectsend/projectsend — projectsend/projectsend	5.4	-	2023-02-01
CVE-2023-0608	Cross-site Scripting (XSS) - DOM in microweber/microweber — microweber/microweber	4.8	-	2023-02-01
CVE-2022-25979	Jsuites 跨站脚本漏洞 — jsuites	5.4	Medium	2023-01-31
CVE-2016-15022	mosbth cimage check_system.php cross site scripting — cimage	2.0	Low	2023-01-29
CVE-2009-10003	capnsquarepants wordcraft tag.php cross site scripting — wordcraft	3.5	Low	2023-01-29
CVE-2023-0571	SourceCodester Canteen Management System Add Customer createcustomer.php cross site scripting — Canteen Management System	3.5	Low	2023-01-29
CVE-2023-0566	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor — froxlor/froxlor	6.2	Medium	2023-01-29
CVE-2023-0563	PHPGurukul Bank Locker Management System Assign Locker add-locker-form.php cross site scripting — Bank Locker Management System	3.5	Low	2023-01-28
CVE-2023-23627	Sanitize vulnerable to Cross-site Scripting via Improper neutralization of `noscript` element — sanitize	6.1	Medium	2023-01-27
CVE-2022-23552	Grafana stored XSS in FileUploader component — grafana	7.3	High	2023-01-27
CVE-2022-39324	Grafana vulnerable to spoofing originalUrl of snapshots — grafana	6.7	Medium	2023-01-27
CVE-2023-0553	Quick Restaurant Menu <= 2.0.2 - Authenticated (Administrator+) Cross-Site Scripting — Quick Restaurant Menu	4.4	Medium	2023-01-27
CVE-2023-0549	YAFNET Private Message PostPrivateMessage cross site scripting — YAFNET	3.5	Low	2023-01-27
CVE-2023-0527	PHPGurukul Online Security Guards Hiring System search-request.php cross site scripting — Online Security Guards Hiring System	3.5	Low	2023-01-27
CVE-2023-0513	isoftforce Dreamer CMS cross site scripting — Dreamer CMS	3.5	Low	2023-01-26
CVE-2023-22468	Discourse vulnerable to Cross-site Scripting in local oneboxes — discourse	8.8	High	2023-01-26
CVE-2023-0470	Cross-site Scripting (XSS) - Stored in modoboa/modoboa — modoboa/modoboa	5.4	-	2023-01-26
CVE-2023-0488	Cross-site Scripting (XSS) - Stored in pyload/pyload — pyload/pyload	5.4	-	2023-01-26

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536