Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21532

21532 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-2689 SourceCodester Wedding Hall Booking System Contact Page cross site scripting — Wedding Hall Booking System 3.5 Low2022-08-06
CVE-2022-2686 oretnom23 Fast Food Ordering System Menu List Page cross site scripting — Fast Food Ordering System 3.5 Low2022-08-06
CVE-2022-2685 SourceCodester Interview Management System addQuestion.php cross site scripting — Interview Management System 3.5 Low2022-08-05
CVE-2022-2684 SourceCodester Apartment Visitor Management System manage-apartment.php cross site scripting — Apartment Visitor Management System 3.5 Low2022-08-05
CVE-2022-2683 SourceCodester Simple Food Ordering System login.php cross site scripting — Simple Food Ordering System 3.5 Low2022-08-05
CVE-2022-2682 SourceCodester Alphaware Simple E-Commerce System stockin.php cross site scripting — Alphaware Simple E-Commerce System 3.5 Low2022-08-05
CVE-2022-2681 SourceCodester Online Student Admission System Student User Page edit-profile.php cross site scripting — Online Student Admission System 3.5 Low2022-08-05
CVE-2021-46678 Vulnerability XSS in service form name field — Pandora FMS 4.0 Medium2022-08-05
CVE-2021-46680 Vulnerability XSS in module form name field — Pandora FMS 4.0 Medium2022-08-05
CVE-2021-46677 Vulnerability XSS in Event filter name field — Pandora FMS 4.0 Medium2022-08-05
CVE-2021-46676 Vulnerability XSS in Transaction Map name field — Pandora FMS 4.0 Medium2022-08-05
CVE-2021-46679 Vulnerability XSS in service elements — Pandora FMS 4.0 Medium2022-08-05
CVE-2021-46681 Vulnerability XSS in module mass operation name field — Pandora FMS 4.0 Medium2022-08-05
CVE-2022-34768 Synel - eHarmony Stored XSS — eHarmony 6.5 Medium2022-08-05
CVE-2020-1691 Moodle 跨站脚本漏洞 — Moodle 5.4 -2022-08-05
CVE-2022-2646 SourceCodester Online Admission System index.php cross site scripting — Online Admission System 3.5 Low2022-08-04
CVE-2022-2645 SourceCodester Garage Management System edituser.php cross site scripting — Garage Management System 3.5 Low2022-08-04
CVE-2022-31175 Cross-site scripting caused by the editor instance destroying process in ckeditor5 — ckeditor5 5.8 Medium2022-08-03
CVE-2022-23733 Stored XSS vulnerability in GitHub Enterprise Server leading to injection of arbitrary attributes — GitHub Enterprise Server 5.4 -2022-08-02
CVE-2022-31192 Cross Site Scripting possible in DSpace JSPUI "Request a Copy" feature — DSpace 7.1 High2022-08-01
CVE-2022-31191 Cross Site Scripting possible in DSpace JSPUI spellcheck and autocomplete tools — DSpace 7.1 High2022-08-01
CVE-2022-31148 Persistent cross site scripting in customer module in Shopware — shopware 5.4 Medium2022-08-01
CVE-2022-31109 HTTP Host Header Attack Vulnerability in laminas-diactoros — laminas-diactoros 7.2 High2022-08-01
CVE-2022-2589 Cross-site Scripting (XSS) - Reflected in beancount/fava — beancount/fava 6.1 -2022-08-01
CVE-2022-36343 WordPress Enable SVG, WebP & ICO Upload plugin <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Enable SVG, WebP & ICO Upload (WordPress plugin) 3.4 Low2022-08-01
CVE-2022-2328 Flexi Quote Rotator <= 0.9.4 - Admin+ Stored Cross-Site Scripting — Flexi Quote Rotator 4.8 -2022-08-01
CVE-2022-2325 Invitation Based Registrations <= 2.2.84 - Admin+ Stored Cross-Site Scripting — Invitation Based Registrations 4.8 -2022-08-01
CVE-2022-2305 WordPress Popup <= 1.9.3.8 - Admin+ Stored Cross-Site Scripting — Popups – WordPress Popup 4.8 -2022-08-01
CVE-2022-2278 Featured Image from URL < 4.0.1 - Admin+ Stored Cross-Site Scripting — Featured Image from URL (FIFU) 4.8 -2022-08-01
CVE-2022-2215 GiveWP < 2.21.3 - Admin+ Stored Cross-Site Scripting — GiveWP – Donation Plugin and Fundraising Platform 4.8 -2022-08-01

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.