Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21506

21506 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2018-15641 Odoo 跨站脚本漏洞 — Odoo Community 5.4 -2020-12-22
CVE-2018-15634 Odoo 跨站脚本漏洞 — Odoo Community 6.1 -2020-12-22
CVE-2018-15638 Odoo 跨站脚本漏洞 — Odoo Community 5.4 -2020-12-22
CVE-2018-15633 Odoo 跨站脚本漏洞 — Odoo Community 6.1 -2020-12-22
CVE-2020-26280 XSS in OpenSlides — OpenSlides 8.9 High2020-12-18
CVE-2020-12517 Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vulnerable website (local privilege escalation). — AXC F 1152 (1151412) 8.8 High2020-12-17
CVE-2020-26198 DELL Dell EMC iDRAC9 跨站脚本漏洞 — Integrated Dell Remote Access Controller (iDRAC) 6.1 -2020-12-16
CVE-2019-19288 Siemens XHQ 跨站脚本漏洞 — XHQ 5.4 -2020-12-14
CVE-2019-19284 Siemens XHQ 跨站脚本漏洞 — XHQ 5.4 -2020-12-14
CVE-2020-24445 Cross-site Scripting Vulnerability in Commenting Function of Adobe Experience Manager (AEM) — Experience Manager 9.0 Critical2020-12-10
CVE-2020-2498 Cross-site scripting vulnerability in QTS and QuTS hero — QTS 6.1 -2020-12-10
CVE-2020-2497 Cross-site scripting vulnerability in QTS and QuTS hero — QTS 6.1 -2020-12-10
CVE-2020-2496 Cross-site scripting vulnerability in QTS and QuTS hero — QTS 6.1 -2020-12-10
CVE-2020-2495 Cross-site scripting vulnerability in QTS and QuTS hero — QTS 6.1 -2020-12-10
CVE-2020-2494 Cross-site Scripting Vulnerability in Music Station — Music Station 6.1 -2020-12-10
CVE-2020-2493 Cross-site Scripting Vulnerability in Multimedia Console — Multimedia Console 6.1 -2020-12-10
CVE-2020-2491 Cross-site Scripting Vulnerability in Photo Station — Photo Station 6.1 -2020-12-10
CVE-2020-10146 Microsoft Teams displayName stored cross-site scripting vulnerability — Teams 5.7 Medium2020-12-09
CVE-2020-25627 Moodle 跨站脚本漏洞 — Moodle 6.1 -2020-12-09
CVE-2020-26249 Remote Code Execution (RCE) Exploit on Cross Site Scripting (XSS) Vulnerability — Red-Dashboard 7.7 High2020-12-08
CVE-2020-25628 Moodle 跨站脚本漏洞 — Moodle 6.1 -2020-12-08
CVE-2020-25631 Moodle 安全漏洞 — Moodle 6.1 -2020-12-08
CVE-2020-27783 Lxml 跨站脚本漏洞 — python-lxml 6.1 -2020-12-03
CVE-2020-7546 多款 Schneider Electric 产品跨站脚本漏洞 — EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software (see security notification for version information) 7.6 -2020-12-01
CVE-2020-27659 Synology SafeAccess 跨站脚本漏洞 — Safe Access 8.4 High2020-11-30
CVE-2020-26227 Cross-Site Scripting in Fluid view helpers — TYPO3.CMS 6.1 Medium2020-11-23
CVE-2020-15249 Stored XSS by authenticated backend user with access to upload files — october 2.8 Low2020-11-23
CVE-2020-26239 Cross-Site Scripting in Scratch browser addons — ScratchAddons 7.6 High2020-11-23
CVE-2020-7571 Schneider Electric EcoStruxure Building Operation WebReports 跨站脚本漏洞 — EcoStruxure Building Operation WebReports V1.9 - V3.1 6.1 -2020-11-19
CVE-2020-7570 Schneider Electric EcoStruxure Building Operation WebReports 跨站脚本漏洞 — EcoStruxure Building Operation WebReports V1.9 - V3.1 5.4 -2020-11-19

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21506 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.