Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21521

21521 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-38337 RSVPMaker Excel <= 1.1 Reflected Cross-Site Scripting — RSVPMaker Excel 6.1 Medium2021-09-10
CVE-2021-38330 Yet Another bol.com Plugin <= 1.4 Reflected Cross-Site Scripting — Yet Another bol.com Plugin 6.1 Medium2021-09-10
CVE-2021-38334 WP Design Maps & Places <= 1.2 Reflected Cross-Site Scripting — WP Design Maps & Places 6.1 Medium2021-09-10
CVE-2021-38350 spideranalyse <= 0.0.1 Reflected Cross-Site Scripting — spideranalyse 6.1 Medium2021-09-10
CVE-2021-38351 OSD Subscribe <= 1.2.3 Reflected Cross-Site Scripting — OSD Subscribe 6.1 Medium2021-09-10
CVE-2021-39202 WordPress 5.8 beta: Stored Cross-Site Scripting (XSS) vulnerability in widget — wordpress-develop 7.6 High2021-09-09
CVE-2021-39201 Authenticated cross-site scripting (XSS) in WordPress editor — wordpress-develop 7.6 High2021-09-09
CVE-2021-38323 RentPress <= 6.6.4 Reflected Cross-Site Scripting — RentPress 6.1 Medium2021-09-09
CVE-2021-38325 User Activation Email <= 1.3.0 Reflected Cross-Site Scripting — User Activation Email 6.1 Medium2021-09-09
CVE-2021-38319 More From Google <= 0.0.2 Reflected Cross-Site Scripting — More From Google 6.1 Medium2021-09-09
CVE-2021-38317 Konnichiwa! Membership <= 0.8.3 Reflected Cross-Site Scripting — Konnichiwa! Membership 6.1 Medium2021-09-09
CVE-2021-38321 Custom Menu Plugin <= 1.3.3 Reflected Cross-Site Scripting — Custom Menu Plugin 6.1 Medium2021-09-09
CVE-2021-38320 simpleSAMLphp Authentication <= 0.7.0 Reflected Cross-Site Scripting — simpleSAMLphp Authentication 6.1 Medium2021-09-09
CVE-2021-38316 WP Academic People List <= 0.4.1 Reflected Cross-Site Scripting — WP Academic People List 6.1 Medium2021-09-09
CVE-2021-38322 Twitter Friends Widget <= 3.1 Reflected Cross-Site Scripting — Twitter Friends Widget 6.1 Medium2021-09-09
CVE-2021-38318 3D Cover Carousel <= 1.0 Reflected Cross-Site Scripting — 3D Cover Carousel 6.1 Medium2021-09-09
CVE-2021-36871 WordPress WP Google Maps Pro premium plugin <= 8.1.11 - Multiple Authenticated Persistent XSS vulnerabilities — WP Google Maps Pro 5.5 Medium2021-09-09
CVE-2021-36870 WordPress WP Google Maps plugin <= 8.1.12 - Multiple Authenticated Persistent XSS vulnerabilities — WP Google Maps (WordPress plugin) 5.5 Medium2021-09-09
CVE-2021-3052 PAN-OS: Reflected Cross-Site Scripting (XSS) in Web Interface — PAN-OS 8.0 High2021-09-08
CVE-2021-32782 Cross-Site Scripting in Nextcloud Circles — security-advisories 5.8 Medium2021-09-07
CVE-2021-39199 Cross site scripting via unsafe defaults in remark-html — remark-html 10.0 Critical2021-09-07
CVE-2021-36094 XSS attack in appointment edit popup screen — ((OTRS)) Community Edition 5.7 Medium2021-09-06
CVE-2021-3768 Cross-site Scripting (XSS) - Stored in bookstackapp/bookstack — bookstackapp/bookstack 5.4 -2021-09-06
CVE-2021-3767 Cross-site Scripting (XSS) - Stored in bookstackapp/bookstack — bookstackapp/bookstack 5.4 -2021-09-06
CVE-2021-24603 Site Reviews < 5.13.1 - Authenticated Stored XSS — Site Reviews 5.4 -2021-09-06
CVE-2021-24601 WPFront Notification Bar < 2.1.0.08087 - Authenticated Stored XSS — WPFront Notification Bar 4.8 -2021-09-06
CVE-2021-24599 Email Encoder < 2.1.2 - Reflected Cross Site Scripting — Email Encoder – Protect Email Addresses 4.7 -2021-09-06
CVE-2021-24591 Highlight < 0.9.3 - Authenticated Stored Cross-Site Scripting — Highlight 4.8 -2021-09-06
CVE-2021-24590 Cookie Notice & Consent Banner for GDPR & CCPA Compliance < 1.7.2 - Authenticated Stored XSS — Cookie Notice & Consent Banner for GDPR & CCPA Compliance 5.4 -2021-09-06
CVE-2021-24588 SMS Alert Order Notifications – WooCommerce < 3.4.7 Authenticated Cross Site Scripting — SMS Alert Order Notifications – WooCommerce 6.1 -2021-09-06

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21521 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.