Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-1299 Slideshow <= 2.3.1 - Admin+ Stored Cross-Site Scripting — Slideshow 4.8 -2022-05-30
CVE-2022-1294 IMDB info box <= 2.0 - Admin+ Stored Cross-Site Scripting — IMDB Info Box 4.8 -2022-05-30
CVE-2022-1275 BannerMan <= 0.2.4 - Multiple Admin+ Stored Cross-Site Scripting — BannerMan 4.8 -2022-05-30
CVE-2022-1009 Smush < 3.9.9 - Admin+ Reflected Cross-Site Scripting — Smush – Lazy Load Images, Optimize & Compress Images 6.1 -2022-05-30
CVE-2022-0376 User Meta < 2.4.3 - Admin+ Stored Cross-Site Scripting — User Meta – User Profile Builder and User management plugin 4.8 -2022-05-30
CVE-2022-1928 Cross-site Scripting (XSS) - Stored in go-gitea/gitea — go-gitea/gitea 5.4 -2022-05-29
CVE-2021-27781 HCL BigFix Mobile / Modern Client Management is vulnerable to stored cross-site scripting — HCL BigFix Mobile / Modern Client Management 6.6 Medium2022-05-27
CVE-2022-20802 Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability — Cisco Enterprise Chat and Email 5.4 Medium2022-05-27
CVE-2022-20674 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20673 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20672 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20671 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20670 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20669 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20668 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20667 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-20666 Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities — Cisco Common Services Platform Collector Software 6.1 Medium2022-05-27
CVE-2022-1909 Cross-site Scripting (XSS) - Stored in causefx/organizr — causefx/organizr 5.4 -2022-05-27
CVE-2021-4232 Zoo Management System manage-ticket.php cross site scripting — Zoo Management System 3.5 Low2022-05-26
CVE-2022-29091 多款DELL产品跨站脚本漏洞 — Unity 5.3 Medium2022-05-26
CVE-2021-4231 Angular Comment cross site scripting — Angular 3.5 Low2022-05-26
CVE-2022-22577 Rails Action Pack 跨站脚本漏洞 — https://github.com/rails/rails 6.1 -2022-05-26
CVE-2022-27777 Action View tag helpers 跨站脚本漏洞 — https://github.com/rails/rails 6.1 -2022-05-26
CVE-2022-30999 Possible cross-site scripting attack via unsanitized SVG files in FoF Upload — upload 8.7 High2022-05-25
CVE-2022-29408 WordPress Advanced Contact form 7 DB plugin <= 1.8.7 - Unauthenticated Persistent Cross-Site Scripting (XSS) vulnerability — Advanced Contact form 7 DB (WordPress plugin) 4.7 Medium2022-05-25
CVE-2021-32989 LCDS LAquis SCADA - Cross-site Scripting — LAquis SCADA 9.3 Critical2022-05-25
CVE-2021-32962 Claroty Secure Remote Access Site - Authentication Bypass Using an Alternate Path or Channel — Web Server (webserver.dll) 8.2 High2022-05-24
CVE-2022-1840 Home Clean Services Management System cross site scripting — Home Clean Services Management System 2.4 Low2022-05-24
CVE-2022-1819 Student Information System Student Roll Module cross site scripting — Student Information System 2.4 Low2022-05-24
CVE-2022-0734 Zyxel USG/ZyWALL 跨站脚本漏洞 — USG/ZyWALL series firmware 5.8 Medium2022-05-24

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.