Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-23710 Elastic Stack Kibana 跨站脚本漏洞 — kibana 6.1 -2022-03-03
CVE-2022-0753 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp — hestiacp/hestiacp 6.1 -2022-03-03
CVE-2022-24722 Cross-site Scripting in view_component — view_component 8.1 High2022-03-02
CVE-2022-23656 Cross-site scripting vulnerability in Zulip Server — zulip 4.6 Medium2022-03-02
CVE-2022-24717 Cross Site Scripting (XSS) in ssr-pages — ssr-pages 6.1 Medium2022-03-01
CVE-2022-0776 Cross-site Scripting (XSS) - DOM in hakimel/reveal.js — hakimel/reveal.js 6.1 -2022-03-01
CVE-2022-0743 Cross-site Scripting (XSS) - Stored in getgrav/grav — getgrav/grav 5.4 -2022-02-28
CVE-2022-23988 WS Form < 1.8.176 - Unauthenticated Stored Cross-Site Scripting — WS Form LITE – Drag & Drop Contact Form Builder for WordPress 6.1 -2022-02-28
CVE-2022-23987 WS Form < 1.8.176 - Admin+ Stored Cross-Site Scripting — WS Form LITE – Drag & Drop Contact Form Builder for WordPress 4.8 -2022-02-28
CVE-2022-23912 AP Custom Testimonial < 1.4.8 - Reflected Cross-Site Scripting — Testimonial WordPress Plugin – AP Custom Testimonial 6.1 -2022-02-28
CVE-2022-0385 Crazy Bone <= 0.6.0 - Unauthenticated Stored XSS — Crazy Bone 6.1 -2022-02-28
CVE-2022-0360 WP Ultimate CSV Importer < 6.4.3 - Admin+ Stored Cross-Site Scripting — Easy Drag And drop All Import : WP Ultimate CSV Importer 4.8 -2022-02-28
CVE-2022-0189 WP RSS Aggregator < 4.20 - Reflected Cross-Site Scripting (XSS) — WP RSS Aggregator – News Feeds, Autoblogging, Youtube Video Feeds and More 6.1 -2022-02-28
CVE-2022-0150 WP Accessibility Helper (WAH) < 0.6.0.7 - Reflected Cross-Site Scripting (XSS) — WP Accessibility Helper (WAH) 6.1 -2022-02-28
CVE-2021-4222 WP Paginate < 2.1.4 - Admin+ Stored Cross-Site Scripting — WP-Paginate 4.8 -2022-02-28
CVE-2021-25112 WHMCS Bridge < 6.4b - Reflected Cross-Site Scripting (XSS) — WHMCS Bridge 6.1 -2022-02-28
CVE-2021-25034 WP User < 7.0 - Reflected Cross-Site Scripting — WP User – Custom Registration Forms, Login and User Profile 6.1 -2022-02-28
CVE-2021-24994 WPvivid Backup and Migration Plugin < 0.9.69 - Unauthenticated Stored Cross-Site Scripting — Migration, Backup, Staging – WPvivid Backup and Migration Plugin 6.1 -2022-02-28
CVE-2021-24971 WP Responsive Menu < 3.1.7.1 - Subscriber+ Settings Update to Stored XSS — WP Responsive Menu 5.4 -2022-02-28
CVE-2021-24933 Dynamic Widgets <= 1.5.16 - Reflected Cross-Site Scripting — Dynamic Widgets 5.4 -2022-02-28
CVE-2021-24920 StatCounter < 2.0.7 - Admin+ Stored Cross-Site Scripting — StatCounter – Free Real Time Visitor Stats 4.8 -2022-02-28
CVE-2021-24903 GRAND FlaGallery <= 6.1.2 - Admin+ Stored Cross-Site Scripting — Album and Image Gallery with Lightbox – Flagallery Photo Portfolio 4.8 -2022-02-28
CVE-2021-24901 Security Audit <= 1.0.0 - Admin+ Stored Cross Site Scripting — Security Audit 4.8 -2022-02-28
CVE-2021-24898 EditableTable <= 0.1.4 - Admin+ Stored Cross-Site Scripting — Editable Table Simple Fast FrontEnd From Sql tables 4.8 -2022-02-28
CVE-2020-36510 15Zine < 3.3.0 - Reflected Cross-Site Scripting — 15Zine 6.1 -2022-02-28
CVE-2022-0772 Cross-site Scripting (XSS) - Stored in librenms/librenms — librenms/librenms 5.4 -2022-02-27
CVE-2022-0723 Cross-site Scripting (XSS) - Reflected in microweber/microweber — microweber/microweber 6.1 -2022-02-26
CVE-2022-0763 Cross-site Scripting (XSS) - Stored in microweber/microweber — microweber/microweber 4.8 -2022-02-26
CVE-2022-24710 Cross-site Scripting in Weblate — weblate 5.4 Medium2022-02-25
CVE-2021-45229 Apache Airflow: Reflected XSS via Origin Query Argument in URL — Apache Airflow 6.1 -2022-02-25

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.