Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-1710 Appointment Hour Booking < 1.3.56 - Admin+ Stored Cross-Site Scripting — Appointment Hour Booking – WordPress Booking Plugin 4.8 -2022-06-13
CVE-2022-1604 MailerLite < 1.5.4 - Reflected Cross-Site Scripting — MailerLite – Signup forms (official) 6.1 -2022-06-13
CVE-2022-1549 WP Athletics <= 1.1.7 - Subscriber+ Stored Cross-Site Scripting — WP Athletics 5.4 -2022-06-13
CVE-2022-1532 Themify - WooCommerce Product Filter < 1.3.8 - Reflected Cross-Site Scripting — Themify – WooCommerce Product Filter 6.1 -2022-06-13
CVE-2022-1336 Carousel CK <= 1.1.0 - Admin+ Stored Cross-Site Scripting — Carousel CK 4.8 -2022-06-13
CVE-2022-1335 Slideshow CK < 1.4.10 - Admin+ Stored Cross-Site Scripting — Slideshow CK 4.8 -2022-06-13
CVE-2022-0626 Advanced Admin Search < 1.1.6 - Reflected Cross-Site Scripting — Advanced Admin Search 6.1 -2022-06-13
CVE-2022-1822 Zephyr Project Manager <= 3.2.40 - Reflected Cross-Site Scripting — Zephyr Project Manager 6.1 Medium2022-06-13
CVE-2022-2066 Cross-site Scripting (XSS) - Reflected in neorazorx/facturascripts — neorazorx/facturascripts 6.1 -2022-06-13
CVE-2022-2065 Cross-site Scripting (XSS) - Stored in neorazorx/facturascripts — neorazorx/facturascripts 5.4 -2022-06-13
CVE-2022-2060 Cross-site Scripting (XSS) - Stored in dolibarr/dolibarr — dolibarr/dolibarr 5.4 -2022-06-13
CVE-2022-24876 Stored cross site scrpting in GLPI's Kanban — glpi 5.4 Medium2022-06-09
CVE-2022-2036 Cross-site Scripting (XSS) - Stored in francoisjacquet/rosariosis — francoisjacquet/rosariosis 5.4 -2022-06-09
CVE-2022-31038 XSS vulnerability in repository issue list in Gogs — gogs 5.4 Medium2022-06-08
CVE-2022-2026 Cross-site Scripting (XSS) - Stored in kromitgmbh/titra — kromitgmbh/titra 5.4 -2022-06-08
CVE-2022-2028 Cross-site Scripting (XSS) - Generic in kromitgmbh/titra — kromitgmbh/titra 5.4 -2022-06-08
CVE-2022-2029 Cross-site Scripting (XSS) - DOM in kromitgmbh/titra — kromitgmbh/titra 5.4 -2022-06-08
CVE-2022-2015 Cross-site Scripting (XSS) - Stored in jgraph/drawio — jgraph/drawio 5.4 -2022-06-08
CVE-2022-2022 Cross-site Scripting (XSS) - Stored in nocodb/nocodb — nocodb/nocodb 5.4 -2022-06-07
CVE-2022-2020 SourceCodester Prison Management System System Name cross site scripting — Prison Management System 2.4 Low2022-06-07
CVE-2022-2016 Cross-site Scripting (XSS) - Reflected in neorazorx/facturascripts — neorazorx/facturascripts 6.1 -2022-06-07
CVE-2022-1997 Cross-site Scripting (XSS) - Stored in francoisjacquet/rosariosis — francoisjacquet/rosariosis 5.4 -2022-06-06
CVE-2022-1673 WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page — WooCommerce Green Wallet Gateway 6.1 -2022-06-06
CVE-2022-1647 FormCraft Basic < 1.2.6 - Admin+ Stored Cross Site Scripting — FormCraft – Contact Form Builder for WordPress 4.8 -2022-06-06
CVE-2022-1597 WPQA < 5.4 - Reflected Cross-Site Scripting — WPQA Builder 6.1 -2022-06-06
CVE-2022-1569 WordPress Forms by Pie Forms < 1.4.9.4 - Admin+ Stored Cross-Site Scripting — Drag & Drop Builder, Human Face Detector, Pre-built Templates, Spam Protection, User Email Notifications & more! 4.8 -2022-06-06
CVE-2022-1541 Video Slider - Slider Carousel < 1.4.8 - Admin+ Stored Cross-Site Scripting — Video Slider – Slider Carousel 4.8 -2022-06-06
CVE-2022-1506 WP Born Babies <= 1.0 - Contributor+ Stored Cross-Site Scripting — WP BORN BABIES PLUGIN 5.4 -2022-06-06
CVE-2022-1469 FiboSearch < 1.18.0 - Admin+ Stored Cross-Site Scripting — FiboSearch – Ajax Search for WooCommerce 4.8 -2022-06-06
CVE-2022-1394 Photo Gallery < 1.6.4 - Admin+ Stored Cross-Site Scripting — Photo Gallery by 10Web – Mobile-Friendly Image Gallery 4.8 -2022-06-06

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.