Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-1241 Ask Me < 6.8.2 - Reflected Cross-Site Scripting — Ask me 6.1 -2022-06-06
CVE-2022-1005 WP Statistics < 13.2.2 - Reflected Cross-Site Scripting — WP Statistics 6.1 -2022-06-06
CVE-2020-36527 Server Status HTTP Status/SMTP Status cross site scripting — Server Status 3.5 Low2022-06-03
CVE-2020-36526 Countdown Timer Macro cross site scripting — Countdown Timer 3.5 Low2022-06-03
CVE-2020-36525 Linking New Windows Macro cross site scripting — Linking 3.5 Low2022-06-03
CVE-2020-36524 Refined Toolkit UI-Image/UI-Button cross site scripting — Refined Toolkit 3.5 Low2022-06-03
CVE-2020-36523 PlantUML Database Information Macro cross site scripting — PlantUML 3.5 Low2022-06-03
CVE-2022-1991 Fast Food Ordering System Master List Master.php cross site scripting — Fast Food Ordering System 3.5 Low2022-06-03
CVE-2022-1988 Cross-site Scripting (XSS) - Generic in neorazorx/facturascripts — neorazorx/facturascripts 6.1 -2022-06-03
CVE-2022-26866 Dell EMC PowerStore 跨站脚本漏洞 — PowerStore 5.5 Medium2022-06-02
CVE-2022-1980 SourceCodester Product Show Room Site cross site scripting — Product Show Room Site 2.4 Low2022-06-02
CVE-2022-1979 SourceCodester Product Show Room Site p=contact cross site scripting — Product Show Room Site 3.5 Low2022-06-02
CVE-2021-27914 Mautic 跨站脚本漏洞 — Mautic 7.6 High2022-06-01
CVE-2021-27778 HCL Traveler is susceptible to a cross-site scripting vulnerability which could allow an attacker to execute a malicious script to access sensitive information. — HCL Traveler 4.9 Medium2022-05-31
CVE-2021-36866 WordPress Easy Pricing Tables plugin <= 3.1.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Easy Pricing Tables (WordPress plugin) 4.8 Medium2022-05-31
CVE-2022-1646 Simple Real Estate Pack <= 1.4.8 - Admin+ Stored Cross Site Scripting — Simple Real Estate Pack 4.8 -2022-05-30
CVE-2022-1645 Amazon Link <= 3.2.10 - Admin+ Stored Cross-Site Scripting — Amazon Link 4.8 -2022-05-30
CVE-2022-1644 Call&Book Mobile Bar <= 1.2.2 - Admin+ Stored Cross Site Scripting — Call&Book Mobile Bar 4.8 -2022-05-30
CVE-2022-1643 Birthdays Widget <= 1.7.18 - Admin+ Stored Cross Site Scripting — Birthdays Widget 4.8 -2022-05-30
CVE-2022-1582 External Links in New Window / New Tab < 1.43 - Unauthenticated Stored Cross-Site Scripting — External Links in New Window / New Tab 6.1 -2022-05-30
CVE-2022-1568 Team Members < 5.1.1 - Admin+ Stored Cross-Site Scripting — Team Members 4.8 -2022-05-30
CVE-2022-1566 Quotes llama < 1.0.0 - Admin+ Stored Cross-Site Scripting — Quotes llama 4.8 -2022-05-30
CVE-2022-1564 Form Maker By 10Web < 1.14.12 - Admin+ Stored Cross-Site Scripting — Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder 4.8 -2022-05-30
CVE-2022-1562 Enable SVG < 1.4.0 - Author+ Stored Cross Site Scripting via SVG — Enable SVG 5.4 -2022-05-30
CVE-2022-1542 HPB Dashboard <= 1.3.1 - Admin+ Stored Cross Site Scripting — hpb Dashboard 4.8 -2022-05-30
CVE-2022-1528 VikBooking < 1.5.9 - Reflected Cross-Site Scripting — VikBooking Hotel Booking Engine & PMS 6.1 -2022-05-30
CVE-2022-1527 WP 2FA < 2.2.1 - Reflected Cross-Site Scripting — WP 2FA – Two-factor authentication for WordPress 6.1 -2022-05-30
CVE-2022-1456 Poll Maker < 4.0.2 - Admin+ Stored Cross-Site Scripting — Poll Maker 4.8 -2022-05-30
CVE-2022-1395 Easy FAQ with Expanding Text <= 3.2.8.3.1 - Admin+ Stored Cross-Site Scripting — Easy FAQ with Expanding Text 4.8 -2022-05-30
CVE-2022-1387 No Future Posts <= 1.4 - Admin+ Stored Cross-Site Scripting — No Future Posts 4.8 -2022-05-30

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.