Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21527

21527 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24723 WP Reactions Lite < 1.3.6 - Authenticated Stored Cross Site Scripting — WP Reactions Lite 5.4 -2021-11-01
CVE-2021-24722 Restaurant Menu by MotoPress < 2.4.2 - Admin+ Stored Cross Site Scripting — Restaurant Menu by MotoPress 4.8 -2021-11-01
CVE-2021-24716 Modern Events Calendar Lite < 5.22.3 - Authenticated Stored Cross Site Scripting — Modern Events Calendar Lite 5.4 -2021-11-01
CVE-2021-24715 WP Sitemap Page < 1.7.0 - Admin+ Stored Cross Site Scripting — WP Sitemap Page 4.8 -2021-11-01
CVE-2021-24682 Cool Tag Cloud < 2.26 - Contributor+ Stored Cross-Site Scripting — Cool Tag Cloud 5.4 -2021-11-01
CVE-2021-24624 MP3 Audio Player for Music, Radio & Podcast by Sonaar < 2.4.2 - Multiple Admin+ Cross Site Scripting — MP3 Audio Player for Music, Radio & Podcast by Sonaar 4.8 -2021-11-01
CVE-2021-24539 Coming Soon, Under Construction & Maintenance Mode By Dazzler < 1.6.7 - Admin+ Stored Cross-Site Scripting — Coming Soon, Under Construction & Maintenance Mode By Dazzler 4.8 -2021-11-01
CVE-2015-20019 Content text slider on post < 6.9 - Authenticated Stored Cross-Site Scripting (XSS) — Content text slider on post 5.4 -2021-11-01
CVE-2021-3904 Cross-site Scripting (XSS) - Stored in getgrav/grav — getgrav/grav 5.4 -2021-10-27
CVE-2021-41188 Authenticated Stored XSS in Administration — shopware 5.7 Medium2021-10-26
CVE-2021-41175 Stored XSS in Client Groups Management (Authenticated) — AdminLTE 7.3 High2021-10-26
CVE-2021-41172 Self-XSS in AS_Redis — AS_Redis 6.4 Medium2021-10-26
CVE-2021-41182 XSS in the `altField` option of the Datepicker widget — jquery-ui 6.5 Medium2021-10-26
CVE-2021-41183 XSS in `*Text` options of the Datepicker widget — jquery-ui 6.5 Medium2021-10-26
CVE-2021-41184 XSS in the `of` option of the `.position()` util — jquery-ui 6.5 Medium2021-10-26
CVE-2021-21319 Several stored XSS — galette 6.8 Medium2021-10-25
CVE-2021-24885 YOP Poll < 6.1.2 - Reflected Cross-Site Scripting — YOP Poll 6.1 -2021-10-25
CVE-2021-24884 Formidable Form Builder < 4.09.05 - Unauthenticated Stored Cross-Site Scripting — Formidable Form Builder – Contact Form, Survey & Quiz Forms Plugin for WordPress 8.2 -2021-10-25
CVE-2021-24785 Great Quotes <= 1.0.0 - Admin+ Stored Cross-Site Scripting — Great Quotes 4.8 -2021-10-25
CVE-2021-24744 WordPress Contact Forms by Cimatti < 1.4.12 - Admin+ Stored Cross-Site Scripting — WordPress Contact Forms by Cimatti 4.8 -2021-10-25
CVE-2021-24699 Easy Media Download < 1.1.7 - Contributor+ Stored Cross-Site Scripting — Easy Media Download 5.4 -2021-10-25
CVE-2021-24653 Cookie Bar < 1.8.9 - Admin+ Stored Cross-Site Scripting — Cookie Bar 4.8 -2021-10-25
CVE-2021-24608 Formidable Form Builder < 5.0.07 - Admin+ Stored Cross-Site Scripting — Formidable Form Builder – Contact Form, Survey & Quiz Forms Plugin for WordPress 4.8 -2021-10-25
CVE-2021-24544 Responsive WordPress Slider <= 2.2.0 - Subscriber+ Stored Cross-Site Scripting — Responsive WordPress Slider 5.4 -2021-10-25
CVE-2021-24515 Video Gallery - Vimeo and YouTube Gallery < 1.1.5 - Admin+ Stored Cross-Site Scripting — Video Gallery - Vimeo and YouTube Gallery 5.4 -2021-10-25
CVE-2021-24514 Visual Form Builder < 3.0.4 - Admin+ Stored Cross-Site Scripting — Visual Form Builder 4.8 -2021-10-25
CVE-2021-24485 Special Text Boxes < 5.9.110 - Admin+ Stored Cross-Site Scripting — Special Text Boxes 4.8 -2021-10-25
CVE-2021-24414 YT Player < 1.4 - Contributor+ Stored Cross-Site Scripting — Video Player for YouTube 5.4 -2021-10-25
CVE-2021-24381 NinjaForms < 3.5.8.2 - Admin+ Stored Cross-Site Scripting — Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress 4.8 -2021-10-25
CVE-2021-25977 Piranha CMS - Stored XSS in Page Title — Piranha 5.4 Medium2021-10-25

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.