CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-20645	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2022-20644	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2022-20643	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2022-20642	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2022-20641	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2022-20640	Cisco Security Manager Cross-Site Scripting Vulnerabilities — Cisco Security Manager	6.1	Medium	2022-01-14
CVE-2021-38677	Reflected XSS Vulnerability in QcalAgent — QcalAgent	5.3	Medium	2022-01-14
CVE-2021-43764	Adobe Experience Manager Stored XSS in the Spin Set — Experience Manager	8.0	High	2022-01-13
CVE-2021-44176	Adobe Experience Manager Stored XSS in workflow Stages parameter — Experience Manager	8.1	High	2022-01-13
CVE-2021-43761	Adobe Experience Manager Stored XSS on Edit Tag page via Localization input — Experience Manager	8.0	High	2022-01-13
CVE-2021-44177	Adobe Experience Manager Stored XSS in user name parameter in the package manager — Experience Manager	8.1	High	2022-01-13
CVE-2021-43765	Adobe Experience Manager Stored XSS in the Carousel Set — Experience Manager	8.1	High	2022-01-13
CVE-2021-44178	Adobe Experience Manager Reflected XSS in /bin/wcm/contentfinder/page/view.html — Experience Manager	5.4	Medium	2022-01-13
CVE-2022-22125	Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Tag — halo	4.8	Medium	2022-01-13
CVE-2022-22124	Halo CMS - Stored Cross-Site Scripting (XSS) in Profile Image — halo	5.4	Medium	2022-01-13
CVE-2022-22123	Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Title — halo	5.4	Medium	2022-01-13
CVE-2022-23133	Stored XSS in host groups configuration window in Zabbix Frontend — Frontend	6.3	Medium	2022-01-13
CVE-2022-22112	DayByDay CRM - Application-Wide Client-Side Template Injection (CSTI) — DaybydayCRM	5.4	Medium	2022-01-13
CVE-2022-0159	Cross-site Scripting (XSS) - Stored in orchardcms/orchardcore — orchardcms/orchardcore	5.4	-	2022-01-12
CVE-2022-0087	Cross-site Scripting (XSS) - Reflected in keystonejs/keystone — keystonejs/keystone	6.1	-	2022-01-11
CVE-2021-25047	10Web Social Photo Feed < 1.4.29 - Reflected Cross-Site Scripting (XSS) — 10Web Social Photo Feed	6.1	-	2022-01-10
CVE-2021-25043	WOOCS < 1.3.7.3 - Reflected Cross-Site Scripting — WOOCS – Currency Switcher for WooCommerce. Professional and Free multi currency plugin – Pay in selected currency	6.1	-	2022-01-10
CVE-2022-22115	Teedy - Stored Cross-Site Scripting (XSS) in Tag Name — docs	9.0	Critical	2022-01-10
CVE-2022-22114	Teedy - Reflected Cross-Site Scripting (XSS) in the Search Functionality — docs	9.6	Critical	2022-01-10
CVE-2022-22117	Directus - Stored Cross-Site Scripting (XSS) in Profile Avatar Image — directus	5.4	Medium	2022-01-10
CVE-2022-22116	Directus - Stored Cross-Site Scripting (XSS) via SVG File Upload — directus	5.4	Medium	2022-01-10
CVE-2022-0157	Cross-site Scripting (XSS) - Stored in phoronix-test-suite/phoronix-test-suite — phoronix-test-suite/phoronix-test-suite	5.4	-	2022-01-10
CVE-2021-38674	Reflected XSS Vulnerability in TFTP — QuTS hero	4.2	Medium	2022-01-07
CVE-2022-21662	Stored XSS in WordPress — wordpress-develop	8.0	High	2022-01-06
CVE-2021-36739	XSS vulnerability in the MVCBean JSP portlet maven archetype — Apache Portals	6.1	-	2022-01-06

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529