CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-0956	Stored XSS via File Upload in star7th/showdoc — star7th/showdoc	5.4	-	2022-03-15
CVE-2022-0954	Multiple Stored Cross-site Scripting (XSS) Vulnerabilities in Shop's Other Settings, Shop's Autorespond E-mail Settings and Shops' Payments Methods in microweber/microweber — microweber/microweber	4.8	-	2022-03-15
CVE-2022-0893	Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore	5.4	-	2022-03-15
CVE-2022-0894	Cross-site Scripting (XSS) - Stored in pimcore/pimcore — pimcore/pimcore	5.4	-	2022-03-15
CVE-2022-0703	GD Mylist <= 1.1.1 - Admin+ Stored Cross-Site Scripting — GDMylist	4.8	-	2022-03-14
CVE-2022-0702	Petfinder Listings <= 1.0.18 - Admin+ Stored Cross-Site Scripting — Petfinder Listings	4.8	-	2022-03-14
CVE-2022-0701	SEO 301 Meta <= 1.9.1 - Admin+ Stored Cross-Site Scripting — Seo 301 Meta	4.8	-	2022-03-14
CVE-2022-0700	Simple Theme Options < 1.7 - Admin+ Stored Cross-Site Scripting — Simple Tracking	4.8	-	2022-03-14
CVE-2022-0684	WP Home Page Menu < 3.1 - Admin+ Stored Cross-Site Scripting — WP Home Page Menu	4.8	-	2022-03-14
CVE-2022-0674	Kunze Law < 2.1 - Admin+ Stored Cross-Site Scripting — Kunze Law	4.8	-	2022-03-14
CVE-2022-0659	Sync iCloud COS < 2.0.1 - Admin+ Stored Cross-Site Scripting — Sync QCloud COS	4.8	-	2022-03-14
CVE-2022-0648	Team Circle Image Slider With Lightbox < 1.0.16 - Reflected Cross-Site Scripting — Team Circle Image Slider With Lightbox	6.1	-	2022-03-14
CVE-2022-0601	Countdown & Clock < 2.2.9 - Reflected Cross-Site Scripting — Countdown, Coming Soon, Maintenance – Countdown & Clock	6.1	-	2022-03-14
CVE-2022-0503	Multisite Content Copier/Updater < 2.1.2 - Reflected Cross-Site Scripting — WordPress Multisite Content Copier/Updater	6.1	-	2022-03-14
CVE-2022-0449	Flexi - Guest Submit < 4.20 - Reflected Cross-Site Scripting — Flexi – Guest Submit	6.1	-	2022-03-14
CVE-2022-0399	Advanced Product Labels for WooCommerce < 1.2.3.7 - Reflected Cross-Site Scripting — Advanced Product Labels for WooCommerce	6.1	-	2022-03-14
CVE-2022-0327	Master Addons for Elementor < 1.8.2 - Reflected Cross-Site Scripting — Master Addons for Elementor	6.1	-	2022-03-14
CVE-2022-0321	WP Voting Contest < 3.0 - Reflected Cross-Site Scripting — WP Voting Contest	6.1	-	2022-03-14
CVE-2022-0248	Contact Form Submissions < 1.7.3 - Unauthenticated Stored XSS — Contact Form Submissions	6.1	-	2022-03-14
CVE-2022-0230	Better WordPress Google XML Sitemaps <= 1.4.1 - Unauthenticated Stored Cross-Site Scripting — Better WordPress Google XML Sitemaps (support Sitemap Index, Multi-site and Google News)	6.1	-	2022-03-14
CVE-2022-0161	ARI Fancy Lightbox < 1.3.9 - Reflected Cross-Site Scripting — ARI Fancy Lightbox – WordPress Popup	6.1	-	2022-03-14
CVE-2022-0147	Cookie Information < 2.0.8 - Reflected Cross-Site Scripting — Cookie Information \| Free GDPR Consent Solution	6.1	-	2022-03-14
CVE-2021-25026	Patreon WordPress < 1.8.2 - Admin+ Stored Cross-Site Scripting — Patreon WordPress	4.8	-	2022-03-14
CVE-2021-25006	MOLIE <= 0.5 - Reflected Cross-Site Scripting — MOLIE – Instructure Canvas Linking tool	6.1	-	2022-03-14
CVE-2021-24996	IDPay for Contact Form 7 <= 2.1.2 - Reflected Cross-Site Scripting — IDPay for Contact Form 7	6.1	-	2022-03-14
CVE-2021-24995	HTML5 Responsive FAQ <= 2.8.5 - Admin+ Stored Cross-Site Scripting — HTML5 Responsive FAQ	4.8	-	2022-03-14
CVE-2021-24982	Child Theme Generator <= 2.2.7 - Reflected Cross-Site Scripting — Child Theme Generator	5.4	-	2022-03-14
CVE-2021-24958	Meks Easy Photo Feed Widget < 1.2.4 - Subscriber+ Settings Update to Stored XSS — Meks Easy Photo Feed Widget	5.4	-	2022-03-14
CVE-2021-24940	Persian Woocommerce <= 5.8.0 - Reflected Cross-Site Scripting — ووکامرس فارسی	6.1	-	2022-03-14
CVE-2021-24897	Add Subtitle <= 1.1.0 - Contributor+ Stored Cross-Site Scripting — Add Subtitle	5.4	-	2022-03-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529