Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21519

21519 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24271 Ultimate Addons for Elementor < 1.30.0 - Contributor+ Stored XSS — Ultimate Addons for Elementor 5.4 -2021-05-05
CVE-2021-24273 Clever Addons for Elementor < 2.1.0 - Contributor+ Stored XSS — Clever Addons for Elementor 5.4 -2021-05-05
CVE-2021-24257 Premium Addons for Elementor < 4.2.8 - Contributor+ Stored Cross-Site Scripting (XSS) — Premium Addons for Elementor 5.4 -2021-05-05
CVE-2021-24258 ElementsKit and ElementsKit Pro < 2.2.0 - Contributor+ Stored XSS — Elements Kit Lite 5.4 -2021-05-05
CVE-2021-24259 Elementor Addon Elements < 1.11.2 - Contributor+ Stored XSS — Elementor Addon Elements 5.4 -2021-05-05
CVE-2021-24260 Livemesh Addons for Elementor < 6.8 - Contributor+ Stored XSS — Livemesh Addons for Elementor 5.4 -2021-05-05
CVE-2021-24261 HT Mega - Absolute Addons for Elementor Page Builder < 1.5.7 - Contributor+ Stored XSS — HT Mega – Absolute Addons for Elementor Page Builder 5.4 -2021-05-05
CVE-2021-24262 WooLentor - WooCommerce Elementor Addons + Builder < 1.8.6 - Contributor+ Stored XSS — WooLentor – WooCommerce Elementor Addons + Builder 5.4 -2021-05-05
CVE-2021-24263 PowerPack Addons for Elementor < 2.3.2 - Contributor+ Stored XSS — PowerPack Addons for Elementor 5.4 -2021-05-05
CVE-2021-24264 Image Hover Effects - Elementor Addon < 1.3.4 - Contributor+ Stored XSS — Image Hover Effects – Elementor Addon 5.4 -2021-05-05
CVE-2021-24255 Essential Addons for Elementor < 4.5.4 - Contributor+ Stored Cross-Site Scripting (XSS) — Essential Addons for Elementor 5.4 -2021-05-05
CVE-2021-24256 Elementor - Header, Footer & Blocks Template < 1.5.8 - Contributor+ Stored XSS — Elementor – Header, Footer & Blocks Template 5.4 -2021-05-05
CVE-2021-29489 Options structure open to XSS if passed unfiltered — highcharts 7.6 High2021-05-05
CVE-2021-21543 Dell EMC iDRAC9 跨站脚本漏洞 — Integrated Dell Remote Access Controller (iDRAC) 4.8 Medium2021-04-30
CVE-2021-21541 Dell EMC iDRAC9 跨站脚本漏洞 — Integrated Dell Remote Access Controller (iDRAC) 6.1 Medium2021-04-30
CVE-2021-21542 Dell EMC iDRAC9 跨站脚本漏洞 — Integrated Dell Remote Access Controller (iDRAC) 4.8 Medium2021-04-30
CVE-2020-1721 pki-core 跨站脚本漏洞 — pki-core 6.1 -2021-04-30
CVE-2021-29484 DOM XSS in Theme Preview — Ghost 6.8 Medium2021-04-29
CVE-2021-1458 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 Medium2021-04-29
CVE-2021-1457 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 Medium2021-04-29
CVE-2021-1456 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 Medium2021-04-29
CVE-2021-1455 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 -2021-04-29
CVE-2021-29460 Cross-site scripting (XSS) from unsanitized uploaded SVG files — kirby 7.6 High2021-04-27
CVE-2021-21365 Cross-Site Scripting in Content Rendering — bootstrap_package 5.4 Medium2021-04-27
CVE-2021-24239 Pie Register < 3.7.0.1 - Reflected Cross-Site Scripting (XSS) — Pie Register – User Registration Forms. Invitation based registrations, Custom Login, Payments 6.1 -2021-04-22
CVE-2021-24241 Advanced Custom Field Pro < 5.9.1 - Reflected Cross-Site Scripting (XSS) — Advanced Custom Fields Pro 6.1 -2021-04-22
CVE-2021-24232 Advanced Booking Calendar < 1.6.8 - Authenticated Reflected Cross-Site Scripting (XSS) — Advanced Booking Calendar 5.4 -2021-04-22
CVE-2021-24233 Cooked Pro < 1.7.5.6 - Unauthenticated Reflected Cross Site Scripting (XSS) — Cooked Ppro 6.1 -2021-04-22
CVE-2021-24234 Ivory Search < 4.6.1 - Reflected Cross Site Scripting (XSS) — Ivory Search – WordPress Search Plugin 6.1 -2021-04-22
CVE-2021-24235 Goto - Tour & Travel < 2.0 - Unauthenticated Reflected XSS — Goto 6.1 -2021-04-22

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21519 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.