Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21524

21524 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-41169 Improper Neutralization HTML tags in sulu/sulu — sulu 6.2 Medium2021-10-21
CVE-2021-36869 WordPress Ivory Search plugin <= 4.6.6 - Reflected Cross-Site Scripting (XSS) vulnerability — Ivory Search (WordPress plugin) 4.8 Medium2021-10-21
CVE-2021-39354 Easy Digital Downloads <= 2.11.2 Authenticated Reflected Cross-Site Scripting — Easy Digital Downloads 4.8 Medium2021-10-21
CVE-2021-39328 Simple Job Board <= 2.9.4 Authenticated Stored Cross-Site Scripting — Simple Job Board 5.5 Medium2021-10-21
CVE-2021-39356 Content Staging <= 2.0.1 Authenticated Stored Cross-Site Scripting — Content Staging 5.5 Medium2021-10-21
CVE-2021-39357 Leaky Paywall <= 4.16.5 Authenticated Stored Cross-Site Scripting — Leaky Paywall 5.5 Medium2021-10-21
CVE-2021-35227 Insecure Web Configuration for RabbitMQ Management Plugin in SolarWinds ARM — Access Rights Manager 4.7 Medium2021-10-21
CVE-2021-40121 Cisco Identity Services Engine Cross-Site Scripting Vulnerabilities — Cisco Identity Services Engine Software 6.1 Medium2021-10-21
CVE-2021-34789 Cisco Tetration Stored Cross-Site Scripting Vulnerability — Cisco Secure Workload 4.8 Medium2021-10-21
CVE-2021-34760 Cisco TelePresence Management Suite Stored Cross-Site Scripting Vulnerability — Cisco TelePresence Management Suite (TMS) 5.4 -2021-10-21
CVE-2021-34738 Cisco Identity Services Engine Cross-Site Scripting Vulnerabilities — Cisco Identity Services Engine Software 6.1 Medium2021-10-21
CVE-2021-25969 Camaleon CMS - Stored Cross-Site Scripting (XSS) in Comments — camaleon_cms 6.1 Medium2021-10-20
CVE-2021-31355 Junos OS: Stored Cross-Site Scripting (XSS) vulnerability in captive portal — Junos OS 8.0 High2021-10-19
CVE-2021-32664 Reflected XSS in Combodo/iTop — iTop 8.1 High2021-10-19
CVE-2021-39355 Indeed Job Importer <= 1.0.5 Authenticated Stored Cross-Site Scripting — Indeed Job Importer 5.5 Medium2021-10-19
CVE-2021-39343 MPL-Publisher – Self-publish your book & ebook <= 1.30.2 Authenticated Stored Cross-Site Scripting — MPL-Publisher 5.5 Medium2021-10-19
CVE-2021-39329 JobBoardWP – Job Board Listings and Submissions <= 1.0.7 Authenticated Stored Cross-Site Scripting — JobBoardWP 5.5 Medium2021-10-19
CVE-2021-36832 WordPress Icegram plugin <= 2.0.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — Popups, Welcome Bar, Optins and Lead Generation Plugin – Icegram 4.8 Medium2021-10-19
CVE-2011-1497 Rails 跨站脚本漏洞 — rails 6.1 -2021-10-19
CVE-2021-3879 Cross-site Scripting (XSS) - Stored in snipe/snipe-it — snipe/snipe-it 5.4 -2021-10-19
CVE-2021-3863 Cross-site Scripting (XSS) - Generic in snipe/snipe-it — snipe/snipe-it 5.4 -2021-10-19
CVE-2021-38482 InHand Networks IR615 Router — IR615 Router 8.7 High2021-10-19
CVE-2021-38466 InHand Networks IR615 Router — IR615 Router 8.8 High2021-10-19
CVE-2021-38468 InHand Networks IR615 Router — IR615 Router 8.7 High2021-10-19
CVE-2021-25968 OpenCMS - Stored Cross-Site Scripting (XSS) in Sitemap — opencms-core 5.4 Medium2021-10-19
CVE-2021-41156 Reflected XSS vulnerability — timetracker 6.8 Medium2021-10-18
CVE-2021-32609 XSS vulnerability on Explore page — Apache Superset 6.4 -2021-10-18
CVE-2021-24760 Gutenberg PDF Viewer Block < 1.0.1 - Contributor+ Stored Cross-Site Scripting — Gutenberg PDF Viewer Block 5.4 -2021-10-18
CVE-2021-24743 Podcast Subscribe Buttons < 1.4.2 - Contributor+ Stored XSS — Podcast Subscribe Buttons 5.4 -2021-10-18
CVE-2021-24740 Tutor LMS < 1.9.9 - Multiple Admin+ Stored Cross-Site Scripting — Tutor LMS – eLearning and online course solution 4.8 -2021-10-18

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21524 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.