Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21519

21519 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-32542 SysJust CTS Web - Reflected XSS — CTS Web 4.7 Medium2021-05-28
CVE-2021-32539 Hundred Plus 101EIP - Stored XSS-1 — 101EIP 5.4 Medium2021-05-28
CVE-2021-32540 Hundred Plus 101EIP - Stored XSS-2 — 101EIP 5.4 Medium2021-05-28
CVE-2020-10688 Red Hat Resteasy 跨站脚本漏洞 — RESTEasy 6.1 -2021-05-27
CVE-2020-27832 Red Hat Quay 跨站脚本漏洞 — quay 8.9 -2021-05-27
CVE-2021-3509 Red Hat Ceph跨站脚本漏洞 — ceph-dashboard 6.1 -2021-05-26
CVE-2021-3486 GLPI 跨站脚本漏洞 — glpi 6.1 -2021-05-26
CVE-2021-24306 Ultimate Member < 2.1.20 - Authenticated Reflected Cross-Site Scripting (XSS) — Ultimate Member – User Profile, User Registration, Login & Membership Plugin 5.4 -2021-05-24
CVE-2021-24308 LifterLMS < 4.21.1 - Authenticated Stored XSS in Edit Profile — LMS by LifterLMS – Online Course, Membership & Learning Management System Plugin for WordPress 5.4 -2021-05-24
CVE-2021-24332 Autoptimize < 2.8.4 - Authenticated Stored Cross-Site Scripting (XSS) — Autoptimize 4.8 -2021-05-24
CVE-2021-24296 WP Customer Reviews < 3.5.6 - Authenticated Stored Cross-Site Scripting (XSS) — WP Customer Reviews 4.8 -2021-05-24
CVE-2021-24297 Goto < 2.1 - Reflected Cross-Site Scripting (XSS) — Goto 6.1 -2021-05-24
CVE-2021-24298 Simple Giveaways < 2.36.2 - Unauthenticated Reflected Cross-Site Scripting (XSS) — Simple Giveaways – Grow your business, email lists and traffic with contests 6.1 -2021-05-24
CVE-2021-24300 PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS) — PickPlugins Product Slider for WooCommerce 6.1 -2021-05-24
CVE-2021-24301 Hotjar Connecticator <= 1.1.1 - Authenticated Stored Cross-Site Scripting (XSS) — Hotjar Connecticator 4.8 -2021-05-24
CVE-2021-24302 Hana Flv Player <= 3.1.3 - Authenticated Stored Cross-Site Scripting (XSS) — Hana Flv Player 5.4 -2021-05-24
CVE-2021-24305 Target First Plugin 2.0 - Unauthenticated Stored XSS via Licence Key — Target First Plugin 6.1 -2021-05-24
CVE-2021-24294 DSGVO All in one for WP < 4.0 - Unauthenticated Stored Cross-Site Scripting (XSS) — DSGVO All in one for WP 9.6 -2021-05-24
CVE-2021-1254 Cisco Finesse Cross-Site Scripting Vulnerabilities — Cisco Unified Contact Center Express 4.8 Medium2021-05-22
CVE-2021-3536 Red Hat Wildfly 跨站脚本漏洞 — wildfly 4.8 -2021-05-20
CVE-2021-27465 Emerson Rosemount X-STREAM Gas Analyzer 跨站脚本漏洞 — Emerson Rosemount X-STREAM Gas Analyzer 6.1 -2021-05-20
CVE-2021-29625 XSS in doc_link — adminer 7.5 High2021-05-19
CVE-2021-24325 404 SEO Redirection <= 1.3 - Reflected Cross-Site Scripting (XSS) — 404 SEO Redirection 6.1 -2021-05-17
CVE-2021-24326 All 404 Redirect to Homepage < 1.21 - Authenticated Reflected Cross-Site Scripting (XSS) — All 404 Redirect to Homepage 5.4 -2021-05-17
CVE-2021-24327 SEO Redirection < 6.4 - Authenticated Stored Cross-Site Scripting (XSS) — SEO Redirection Plugin – 301 Redirect Manager 4.8 -2021-05-17
CVE-2021-24290 Store Locator Plus <= 5.5.15 - Unauthenticated Stored Cross-Site Scripting (XSS) — Store Locator Plus for WordPress 6.1 -2021-05-17
CVE-2021-24292 Happy Addons for Elementor Free < 2.24.0 and Pro < 1.17.0 - Contributor+ Stored XSS — Happy Addons for Elementor 5.4 -2021-05-17
CVE-2021-24299 ReDi Restaurant Reservations < 21.0426 - Unauthenticated Stored Cross-Site Scripting (XSS) — ReDi Restaurant Reservation 6.1 -2021-05-17
CVE-2021-24315 Give WP < 2.10.4 - Authenticated Stored Cross-Site Scripting (XSS) — GiveWP – Donation Plugin and Fundraising Platform 4.8 -2021-05-17
CVE-2021-24323 Woocommerce < 5.2.0 - Authenticated Stored Cross-Site Scripting (XSS) — WooCommerce 4.8 -2021-05-17

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21519 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.