Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21535

21535 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2013-10010 zerochplus thread.res.pl PrintResList cross site scripting — zerochplus 4.3 Medium2023-01-11
CVE-2018-25073 Newcomer1989 TSN-Ranksystem bot.php getlog cross site scripting — TSN-Ranksystem 3.5 Low2023-01-11
CVE-2012-10004 backdrop-contrib Basic Cart basic_cart.cart.inc basic_cart_checkout_form_submit cross site scripting — Basic Cart 3.5 Low2023-01-11
CVE-2022-42967 XSS in Caret markdown editor leads to remote code execution when viewing crafted Markdown files — caret 7.5 High2023-01-11
CVE-2023-0162 CPO Companion <= 1.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting — CPO Companion 5.5 Medium2023-01-10
CVE-2022-4710 Royal Elementor Addons <= 1.3.59 - Reflected Cross-Site Scripting — Royal Addons for Elementor – Addons and Templates Kit for Elementor 6.1 Medium2023-01-10
CVE-2022-46823 Siemens Mendix 跨站脚本漏洞 — Mendix SAML (Mendix 8 compatible) 9.3 Critical2023-01-10
CVE-2023-0018 Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Central management console) — BusinessObjects Business Intelligence Platform (Central management console) 10.0 Critical2023-01-10
CVE-2023-0015 Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence (Web Intelligence) — SAP BusinessObjects Business Intelligence Platform 4.6 Medium2023-01-10
CVE-2023-0013 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform — NetWeaver AS for ABAP and ABAP Platform 6.1 Medium2023-01-10
CVE-2023-0125 Control iD Gerencia Web Web Interface cross site scripting — Gerencia Web 2.4 Low2023-01-09
CVE-2022-46769 Apache Sling App CMS: XSS in CMS Site Group Detail — Apache Sling App CMS 5.4 -2023-01-09
CVE-2022-4882 kaltura mwEmbed Share Plugin share.js cross site scripting — mwEmbed 2.6 Low2023-01-09
CVE-2015-10032 HealthMateWeb createaccount.php cross site scripting — HealthMateWeb 3.5 Low2023-01-09
CVE-2021-4310 01-Scripts 01-Artikelsystem 01article.php cross site scripting — 01-Artikelsystem 3.5 Low2023-01-09
CVE-2010-10004 Information Cards Module cross site scripting — Information Cards Module 3.5 Low2023-01-09
CVE-2014-125070 yanheven console tables.py AvailabilityZonesTable cross site scripting — console 3.5 Low2023-01-08
CVE-2021-4309 01-Scripts 01ACP cross site scripting — 01ACP 3.5 Low2023-01-08
CVE-2022-4881 CapsAdmin PAC3 http.lua cross site scripting — PAC3 4.3 Medium2023-01-08
CVE-2022-1102 SourceCodester Royale Event Management System companyprofile.php cross site scripting — Royale Event Management System 4.3 Medium2023-01-07
CVE-2015-10028 ss15-this-is-sparta Main Page roomElement.js cross site scripting — ss15-this-is-sparta 3.5 Low2023-01-07
CVE-2015-10021 ritterim definely database.js cross site scripting — definely 3.5 Low2023-01-07
CVE-2020-36644 jamesmartin Inline SVG URL Parameter helpers.rb cross site scripting — Inline SVG 3.5 Low2023-01-07
CVE-2015-10019 foxoverflow MySimplifiedSQL MySimplifiedSQL_Examples.php cross site scripting — MySimplifiedSQL 3.5 Low2023-01-07
CVE-2023-0106 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07
CVE-2023-0107 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07
CVE-2023-0108 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07
CVE-2023-0110 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07
CVE-2023-0111 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07
CVE-2023-0112 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2023-01-07

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21535 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.