Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-0519 Cross-site Scripting (XSS) - Stored in modoboa/modoboa — modoboa/modoboa 5.4 -2023-01-26
CVE-2022-41941 glpi contains XSS Stored inside Standard Interface Help Link href attribute — glpi 6.2 Medium2023-01-25
CVE-2023-22722 glpi subject to Cross-site Scripting (XSS) - Reflected — glpi 6.8 Medium2023-01-25
CVE-2023-22724 glpi contains XSS in RSS Description Link — glpi 6.2 Medium2023-01-25
CVE-2023-22725 glpi vulnerable to XSS on external links — glpi 6.2 Medium2023-01-25
CVE-2022-25847 serve-lite 跨站脚本漏洞 — serve-lite 5.4 Medium2023-01-25
CVE-2022-38758 XSS vulnerabilities in iManager — NetIQ iManager 7.2 High2023-01-25
CVE-2023-24508 Remote Code Execution in Baicells RTS Platform — Nova 227 8.1 High2023-01-24
CVE-2022-4554 Reflected XSS B2B Dealer Ordering System — B2B Customer Ordering System 5.4 Medium2023-01-24
CVE-2023-23687 WordPress Youtube shortcode Plugin <= 1.8.5 is vulnerable to Cross Site Scripting (XSS) — Youtube shortcode 6.5 Medium2023-01-23
CVE-2023-22721 WordPress Oi Yandex.Maps for WordPress Plugin <= 3.2.7 is vulnerable to Cross Site Scripting (XSS) — Oi Yandex.Maps for WordPress 6.5 Medium2023-01-23
CVE-2023-0446 My YouTube Channel <= 3.0.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting — My YouTube Channel 5.5 Medium2023-01-23
CVE-2022-38110 Reflected Cross-Site Scripting Vulnerability — Database Performance Analyzer (DPA) 5.4 Medium2023-01-20
CVE-2023-0410 Cross-site Scripting (XSS) - Generic in builderio/qwik — builderio/qwik 6.1 -2023-01-20
CVE-2022-40697 WordPress 3com – Asesor de Cookies para normativa española Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS) — 3com – Asesor de Cookies para normativa española 4.8 Medium2023-01-19
CVE-2022-4892 MyCMS Visitors Module view.php build_view cross site scripting — MyCMS 3.5 Low2023-01-19
CVE-2023-20058 Cisco Unified Intelligence Center 跨站脚本漏洞 — Cisco Unified Contact Center Enterprise 6.1 -2023-01-19
CVE-2023-20019 Cisco BroadWorks Application 跨站脚本漏洞 — Cisco BroadWorks 6.1 Medium2023-01-19
CVE-2023-20037 Cisco Industrial Network Director 跨站脚本漏洞 — Cisco Industrial Network Director 5.4 Medium2023-01-19
CVE-2023-22594 IBM Robotic Process Automation for Cloud Pak cross-site scripting — Robotic Process Automation for Cloud Pak 4.6 Medium2023-01-18
CVE-2022-20967 Cisco Identity Services Engine 跨站脚本漏洞 — Cisco Identity Services Engine Software 4.8 Medium2023-01-18
CVE-2022-20966 Cisco Identity Services Engine 跨站脚本漏洞 — Cisco Identity Services Engine Software 5.4 Medium2023-01-18
CVE-2023-0214 XSS in Skyhigh Security SWG — Secure Web Gateway (SWG) 6.1 Medium2023-01-18
CVE-2020-36654 GENI Portal sliceresource.php no_invocation_id_error cross site scripting — Portal 3.5 Low2023-01-18
CVE-2020-36653 GENI Portal error-text.php cross site scripting — Portal 3.5 Low2023-01-18
CVE-2022-46733 CVE-2022-46733 — RTLS Studio 6.3 Medium2023-01-18
CVE-2015-10059 s134328 Webapplication-Veganguide apiService.js cross site scripting — Webapplication-Veganguide 3.5 Low2023-01-17
CVE-2015-10058 Wikisource Category Browser index.php cross site scripting — Category Browser 3.5 Low2023-01-17
CVE-2010-10008 simplesamlphp simplesamlphp-module-openidprovider trust.tpl.php cross site scripting — simplesamlphp-module-openidprovider 3.5 Low2023-01-17
CVE-2022-42462 WordPress IP Blacklist Cloud Plugin <= 5.00 is vulnerable to Cross Site Scripting (XSS) — IP Blacklist Cloud 4.8 Medium2023-01-17

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.