CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-1782	Cross-site Scripting (XSS) - Generic in erudika/para — erudika/para	5.4	-	2022-05-18
CVE-2021-33025	xArrow SCADA Path Traversal — xArrow SCADA	5.6	Medium	2022-05-16
CVE-2021-33021	xArrow SCADA Cross-site Scripting — xArrow SCADA	6.1	Medium	2022-05-16
CVE-2021-33001	xArrow SCADA Cross-site Scripting — xArrow SCADA	6.1	Medium	2022-05-16
CVE-2021-27442	Weintek EasyWeb cMT Cross-site Scripting — cMT-SVR-1xx/2xx	9.4	Critical	2022-05-16
CVE-2022-1726	Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in wenzhixin/bootstrap-table — wenzhixin/bootstrap-table	5.4	-	2022-05-16
CVE-2022-1719	Reflected XSS on ticket filter function in polonel/trudesk — polonel/trudesk	5.4	-	2022-05-16
CVE-2022-1559	Clipr <= 1.2.3 - Admin+ Stored Cross-Site Scripting — Clipr	4.8	-	2022-05-16
CVE-2022-1557	ULeak Security & Monitoring <= 1.2.3 - Subscriber+ Stored Cross-Site Scripting — ULeak Security & Monitoring Plugin	5.4	-	2022-05-16
CVE-2022-1512	ScrollReveal.js Effects <= 1.2 - Admin+ Stored Cross-Site Scripting — ScrollReveal.js Effects	4.8	-	2022-05-16
CVE-2022-1465	WPC Smart Wishlist for WooCommerce < 2.9.9 - Reflected Cross-Site Scripting — WPC Smart Wishlist for WooCommerce	6.1	-	2022-05-16
CVE-2022-1455	Call Now Button < 1.1.2 - Reflected Cross-Site Scripting — Call Now Button	6.1	-	2022-05-16
CVE-2022-1436	WPCargo Track & Trace < 6.9.5 - Reflected Cross Site Scripting — WPCargo Track & Trace	6.1	-	2022-05-16
CVE-2022-1435	WPCargo Track & Trace < 6.9.5 - Admin+ Stored Cross Site Scripting — WPCargo Track & Trace	4.8	-	2022-05-16
CVE-2022-1418	Social Stickers <= 2.2.9 - Stored Cross-Site Scripting via CSRF — Social Stickers	6.1	-	2022-05-16
CVE-2022-1408	VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ Stored Cross-Site Scripting — VikBooking Hotel Booking Engine & PMS	4.8	-	2022-05-16
CVE-2022-1393	WP Subtitle < 3.4.1 - Contributor+ Stored Cross-Site Scripting — WP Subtitle	5.4	-	2022-05-16
CVE-2022-1334	WP YouTube Live < 1.8.3 - Admin+ Stored Cross Site Scripting — WP YouTube Live	4.8	-	2022-05-16
CVE-2022-1267	BMI BMR Calculator <= 1.3 - Reflected Cross-Site Scripting — BMI BMR Calculator	6.1	-	2022-05-16
CVE-2022-1265	BulletProof Security < 6.1 - Admin+ Stored Cross-Site Scripting — BulletProof Security	4.8	-	2022-05-16
CVE-2022-1217	Custom TinyMCE Shortcode Button <= 1.1 - Reflected Cross-Site Scripting — Custom TinyMCE Shortcode Button	6.1	-	2022-05-16
CVE-2022-1216	Advanced Image Sitemap <= 1.2 - Reflected Cross-Site Scripting — Advanced Image Sitemap	6.1	-	2022-05-16
CVE-2022-1089	Bulk Edit and Create User Profiles < 1.5.14 - Admin+ Stored Cross-Site Scripting — Bulk Edit and Create User Profiles – WP Sheet Editor	4.8	-	2022-05-16
CVE-2022-1062	th23 Social <= 1.2.0 - Admin+ Stored Cross-Site Scripting — th23 Social	4.8	-	2022-05-16
CVE-2022-1051	WPQA < 5.2 - Subscriber+ Stored Cross-Site Scripting via Profile fields — WPQA Builder Plugin	5.4	-	2022-05-16
CVE-2022-0873	Gmedia Photo Gallery < 1.20.0 - Admin+ Stored Cross-Site Scripting — Gmedia Photo Gallery	4.8	-	2022-05-16
CVE-2022-29433	https://patchstack.com/database/vulnerability/nd-donations/wordpress-donations-plugin-1-8-authenticated-stored-cross-site-scripting-xss-vulnerability — Donations (WordPress plugin)	4.1	Medium	2022-05-13
CVE-2022-23165	Sysaid – Sysaid 14.2.0 Reflected Cross-Site Scripting (XSS) — Sysaid	5.5	Medium	2022-05-12
CVE-2022-28818	ColdFusion Reflected Cross-Site Scripting could lead to Arbitrary Code Execution — ColdFusion	6.1	-	2022-05-12
CVE-2022-29929	JetBrains TeamCity 跨站脚本漏洞 — TeamCity	3.7	Low	2022-05-12

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530