Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21535

21535 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2014-125035 Jobs-Plugin cross site scripting — Jobs-Plugin 3.5 Low2023-01-02
CVE-2015-10007 82Flex WEIPDCRM cross site scripting — WEIPDCRM 3.5 Low2023-01-02
CVE-2014-125034 stiiv contact_app View.php render cross site scripting — contact_app 3.5 Low2023-01-02
CVE-2019-25093 dragonexpert Recent Threads on Index Setting hooks.php recentthread_list_threads cross site scripting — Recent Threads on Index 2.4 Low2023-01-02
CVE-2014-125031 kirill2485 TekNet loggedin.php cross site scripting — TekNet 3.5 Low2023-01-02
CVE-2015-10006 admont28 Ingnovarq insertarSliderAjax.php cross site scripting — Ingnovarq 3.5 Low2023-01-01
CVE-2010-10002 SimpleSAMLphp simplesamlphp-module-openid OpenID consumer.php cross site scripting — simplesamlphp-module-openid 3.1 Low2023-01-01
CVE-2018-25063 Zenoss Dashboard defaultportlets.js cross site scripting — Dashboard 3.5 Low2023-01-01
CVE-2023-0028 Cross-site Scripting (XSS) - Stored in linagora/twake — linagora/twake 5.7 Medium2023-01-01
CVE-2014-125027 Yuna Scatari TBDev usersearch.php get_user_icons cross site scripting — TBDev 3.5 Low2022-12-31
CVE-2017-20159 rf Keynote rumble.rb cross site scripting — Keynote 3.5 Low2022-12-31
CVE-2017-20158 vova07 Yii2 FileAPI Widget UploadAction.php run cross site scripting — Yii2 FileAPI Widget 3.5 Low2022-12-31
CVE-2022-4865 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2022-12-31
CVE-2022-4866 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2022-12-31
CVE-2017-20155 Sterc Google Analytics Dashboard for MODX Internal Search widget.analytics.tpl cross site scripting — Google Analytics Dashboard for MODX 3.5 Low2022-12-30
CVE-2017-20153 aerouk imageserve cross site scripting — imageserve 2.6 Low2022-12-30
CVE-2022-4859 Joget User Profile Menu UserProfileMenu.java submitForm cross site scripting — Joget 3.5 Low2022-12-30
CVE-2020-36638 Chris92de AdminServ adminserv.php cross site scripting — AdminServ 3.5 Low2022-12-30
CVE-2020-36637 Chris92de AdminServ adminserv.php cross site scripting — AdminServ 3.5 Low2022-12-30
CVE-2022-38204 Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only) — ArcGIS Enterprise 6.1 Medium2022-12-30
CVE-2022-38206 Reflected XSS vulnerability in Portal for ArcGIS (10.9.1, 10.8.1 and 10.7.1 only) — ArcGIS Enterprise 6.1 Medium2022-12-30
CVE-2022-38207 Reflected XSS vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only) — ArcGIS Enterprise 6.1 Medium2022-12-30
CVE-2022-38209 Reflected XSS vulnerability in Portal for ArcGIS — ArcGIS Quickcapture 6.1 Medium2022-12-30
CVE-2022-46181 Gotify server XSS vulnerability in the application image file upload — server 6.1 Medium2022-12-29
CVE-2021-4296 w3c Unicorn ValidatorNuMessage.java ValidatorNuMessage cross site scripting — Unicorn 3.5 Low2022-12-29
CVE-2022-4839 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2022-12-29
CVE-2022-4840 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2022-12-29
CVE-2022-4841 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memos 5.4 -2022-12-29
CVE-2022-4822 FlatPress Setup main.lib.php cross site scripting — FlatPress 2.4 Low2022-12-28
CVE-2022-4821 FlatPress XML File Handler/MD File admin.uploader.php onupload cross site scripting — FlatPress 2.4 Low2022-12-28

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21535 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.