CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21519

21519 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-32702	Reflected XSS from the callback handler's error query parameter — nextjs-auth0	8.0	High	2021-06-25
CVE-2021-32713	Authenticated Stored XSS — shopware	4.8	Medium	2021-06-24
CVE-2021-27659	exacqVision Web Service CSS — exacqVision Web Service	5.3	Medium	2021-06-24
CVE-2021-27658	exacqVision Enterprise Manager CSS — exacqVision Enterprise Manager	4.3	Medium	2021-06-24
CVE-2021-25656	Avaya Aura Experience Portal XSS vulnerabilities — Product	5.3	Medium	2021-06-24
CVE-2021-32644	Cross-site Scripting in Random.php — ampache	6.4	Medium	2021-06-22
CVE-2010-4264	Vanilla Forums 跨站脚本漏洞 — vanilla forums	6.1	-	2021-06-22
CVE-2021-24383	WP Google Maps < 8.1.12 - Authenticated Stored Cross-Site Scripting (XSS) — WP Google Maps	5.4	-	2021-06-21
CVE-2021-24378	Autoptimize < 2.7.8 - Authenticated Stored XSS via File Upload — Autoptimize	4.8	-	2021-06-21
CVE-2021-24373	WP Hardening < 1.2.2 - Reflected XSS via historyvalue — WP Hardening – Fix Your WordPress Security	6.1	-	2021-06-21
CVE-2021-24372	WP Hardening < 1.2.2 - Reflected XSS via URI — WP Hardening – Fix Your WordPress Security	6.1	-	2021-06-21
CVE-2021-24369	GetPaid < 2.3.4 - Authenticated Stored XSS — WordPress Payments Plugin \| GetPaid	5.4	-	2021-06-21
CVE-2021-24367	WP Config File Editor <= 1.7.1 - Authenticated Stored Cross-Site Scripting (XSS) — WP Config File Editor	5.4	-	2021-06-21
CVE-2021-24364	Jannah < 5.4.4 - Reflected Cross-Site Scripting (XSS) — Jannah	6.1	-	2021-06-21
CVE-2021-24339	Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS) — Pods – Custom Content Types and Fields	5.4	-	2021-06-21
CVE-2021-24338	Pods < 2.7.27 - Authenticated Stored Cross-Site Scripting (XSS) — Pods – Custom Content Types and Fields	5.4	-	2021-06-21
CVE-2021-21422	XSS Vulnerability in mongo-express — mongo-express	8.1	High	2021-06-21
CVE-2021-24368	Quiz And Survey Master < 7.1.18 - Reflected Cross-Site Scripting (XSS) — Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress	6.1	-	2021-06-20
CVE-2021-32536	MCU Technologies MCUsystem - Reflected XSS — MCUsystem	6.1	Medium	2021-06-18
CVE-2021-32681	Improper escaping of HTML ('Cross-site Scripting') in Wagtail StreamField blocks — wagtail	5.4	Medium	2021-06-17
CVE-2021-1395	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability — Cisco Unified Contact Center Express	4.7	Medium	2021-06-16
CVE-2021-27479	ZOLL Defibrillator Dashboard 跨站脚本漏洞 — ZOLL Defibrillator Dashboard	5.4	-	2021-06-16
CVE-2021-21441	XSS in the ticket overview screens — ((OTRS)) Community Edition	7.5	High	2021-06-16
CVE-2021-3535	Rapid7 Nexpose 跨站脚本漏洞 — Rapid7 Nexpose	4.3	Medium	2021-06-16
CVE-2021-32683	XSS through createObjectURL — wire-webapp	8.8	High	2021-06-15
CVE-2021-24357	FooGallery < 2.0.35 - Authenticated Stored Cross-Site Scripting — Best Image Gallery & Responsive Photo Gallery – FooGallery	5.4	-	2021-06-14
CVE-2021-24382	Smart Slider 3 < 3.5.0.9 - Authenticated Stored Cross-Site Scripting (XSS) — Smart Slider 3	4.8	-	2021-06-14
CVE-2021-24349	Gallery From Files <= 1.6.0 - Reflected Cross-Site Scripting (XSS) — Gallery from files	6.1	-	2021-06-14
CVE-2021-24350	Visitors <= 0.3 - Unauthenticated Stored Cross-Site Scripting (XSS) — Visitors	6.1	-	2021-06-14
CVE-2021-24351	The Plus Addons for Elementor < 4.1.12 - Reflected Cross-Site Scripting (XSS) — The Plus Addons for Elementor Page Builder	6.1	-	2021-06-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21519 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21519