Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-29415 WordPress Ravpage plugin <= 2.16 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability — Ravpage (WordPress plugin) 6.1 Medium2022-04-28
CVE-2021-43932 Elcomplus SmartPtt Cross-site Scripting — SmartPTT 9.0 Critical2022-04-28
CVE-2022-24873 Non-Stored Cross-site Scripting in Shopware storefront — shopware 5.4 Medium2022-04-28
CVE-2022-29817 Jetbrains JetBrains IntelliJ IDEA 跨站脚本漏洞 — IntelliJ IDEA 3.9 Low2022-04-28
CVE-2022-29811 JetBrains Hub 跨站脚本漏洞 — Hub 6.1 Medium2022-04-28
CVE-2021-34590 Bender Charge Controller: Cross-site Scripting — CC612 5.4 Medium2022-04-27
CVE-2022-1504 XSS in /demo/module/?module=HERE in microweber/microweber — microweber/microweber 6.1 -2022-04-27
CVE-2022-1503 GetSimple CMS Content Module edit.php cross site scripting — CMS 3.5 Low2022-04-27
CVE-2022-24891 Cross-site Scripting in org.owasp.esapi:esapi -- antisamy-esapi.xml configuration file — esapi-java-legacy 5.4 Medium2022-04-27
CVE-2022-27854 WordPress Psychological tests & quizzes plugin <= 0.21.19 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Psychological tests & quizzes (WordPress plugin) 5.4 Medium2022-04-26
CVE-2021-26628 MaxBoard XSS and File Upload Vulnerability — MaxBoard 8.1 High2022-04-26
CVE-2021-36895 WordPress Tripetto plugin <= 5.1.4 - Unauthenticated Cross-Site Scripting (XSS) vulnerability via SVG image upload — Tripetto (WordPress plugin) 4.7 Medium2022-04-26
CVE-2021-36867 WordPress Psychological tests & quizzes plugin <= 0.21.19 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Psychological tests & quizzes (WordPress plugin) 5.4 Medium2022-04-26
CVE-2022-1173 stored xss in getgrav/grav — getgrav/grav 5.4 -2022-04-26
CVE-2022-29418 WordPress Night Mode plugin <= 1.0.0 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerability — Night Mode (WordPress plugin) 4.8 Medium2022-04-25
CVE-2022-28290 WordPress plugin Country Selector 跨站脚本漏洞 — WordPress Country Selector Plugin 6.1 -2022-04-25
CVE-2022-1396 Donorbox < 7.1.7 - Admin+ Stored Cross-Site Scripting — Donorbox – Free Recurring Donation Form 4.8 -2022-04-25
CVE-2022-1228 Opensea < 1.0.3 - Admin+ Stored XSS — Opensea 4.8 -2022-04-25
CVE-2022-1156 Books & Papers <= 0.20210223 - Admin+ Stored Cross-Site Scripting — Books & Papers 4.8 -2022-04-25
CVE-2022-1153 LayerSlider < 7.1.2 - Admin+ Stored Cross-Site Scripting — LayerSlider 4.8 -2022-04-25
CVE-2022-1152 Menubar < 5.8 - Reflected Cross-Site Scripting — Menubar 5.4 -2022-04-25
CVE-2022-1094 Amr Users < 4.59.4 - Admin+ Stored Cross-Site Scripting — amr users 4.8 -2022-04-25
CVE-2022-1027 Page Restriction WordPress < 1.2.7 - Admin+ Stored Cross-Site Scripting — Page Restriction WordPress (WP) – Protect WP Pages/Post 4.8 -2022-04-25
CVE-2022-0953 Anti-Malware Security and Brute-Force Firewall < 4.20.96 - Reflected Cross-Site Scripting — Anti-Malware Security and Brute-Force Firewall 6.1 -2022-04-25
CVE-2022-0876 Social comments by WpDevArt < 2.5.0 - Admin+ Stored Cross-Site Scripting — Social comments by WpDevArt 4.8 -2022-04-25
CVE-2021-46782 Pricing Table by Supsystic < 1.9.5 - Reflected Cross-Site Scripting — Pricing Table by Supsystic 6.1 -2022-04-25
CVE-2021-46781 Coming Soon by Supsystic < 1.7.6 - Reflected Cross-Site Scripting — Coming Soon by Supsystic 6.1 -2022-04-25
CVE-2021-46780 Easy Google Maps < 1.9.32 - Reflected Cross-Site Scripting — Easy Google Maps 6.1 -2022-04-25
CVE-2022-1458 Stored XSS Leads To Session Hijacking in openemr/openemr — openemr/openemr 5.4 -2022-04-25
CVE-2022-1457 Store XSS in title parameter executing at EditUser Page & EditProducto page in neorazorx/facturascripts — neorazorx/facturascripts 6.1 -2022-04-25

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.