Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21504

21504 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-15274 Stored XSS via search result in Wiki.js — wiki.js 5.8 Medium2020-10-26
CVE-2020-3580 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities — Cisco Adaptive Security Appliance (ASA) Software 6.1 Medium2020-10-21
CVE-2020-3581 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities — Cisco Adaptive Security Appliance (ASA) Software 6.1 Medium2020-10-21
CVE-2020-3599 Cisco Adaptive Security Appliance Software Web-Based Management Interface Reflected Cross-Site Scripting Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 6.1 Medium2020-10-21
CVE-2020-3583 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities — Cisco Adaptive Security Appliance (ASA) Software 6.1 Medium2020-10-21
CVE-2020-3582 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Cross-Site Scripting Vulnerabilities — Cisco Adaptive Security Appliance (ASA) Software 6.1 Medium2020-10-21
CVE-2020-3515 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 -2020-10-21
CVE-2020-3553 Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 -2020-10-21
CVE-2020-24416 Blind stored XSS in Marketo Sales insight plugin for SalesForce — Marketo 6.1 -2020-10-20
CVE-2020-16246 GE Reason S20 Ethernet Switch — Reason S20 Ethernet Switch 6.1 -2020-10-20
CVE-2020-15245 Email verification bypass in Sylius — Sylius 4.3 Medium2020-10-19
CVE-2020-15263 XSS in platform — platform 8.0 High2020-10-19
CVE-2020-1673 Junos OS: Reflected Cross-site Scripting vulnerability in J-Web and web based (HTTP/HTTPS) services — Junos OS 8.8 High2020-10-16
CVE-2020-24408 Stored XSS in customer address upload feature — Magento Commerce 6.1 Medium2020-10-16
CVE-2020-7317 ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability — ePolicy Orchistrator (ePO) 4.6 Medium2020-10-14
CVE-2020-7318 ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability — ePolicy Orchistrator (ePO) 4.6 Medium2020-10-14
CVE-2020-15253 Stored XSS in Grocy — grocy 7.3 High2020-10-14
CVE-2020-5142 SonicWall SonicOS SSLVPN NACagent 跨站脚本漏洞 — SonicOS 6.1 -2020-10-12
CVE-2020-3589 Cisco Identity Services Engine Cross-Site Scripting Vulnerability — Cisco Identity Services Engine Software 4.8 Medium2020-10-08
CVE-2020-3536 Cisco SD-WAN vManage Cross-Site Scripting Vulnerability — Cisco SD-WAN vManage 5.4 -2020-10-08
CVE-2020-3320 Cisco Firepower Management Center Cross-Site Scripting Vulnerability — Cisco Firepower Management Center 5.4 -2020-10-08
CVE-2020-15217 User data exposure in GLPI — glpi 5.3 Medium2020-10-07
CVE-2020-15177 Unauthenticated Stored XSS in GLPI — glpi 8.0 High2020-10-07
CVE-2020-15231 Cross-site scripting attack in mapfish-print — mapfish-print 9.3 Critical2020-10-02
CVE-2020-8238 Pulse Secure Pulse Connect Secure和Pulse Policy Secure 跨站脚本漏洞 — Pulse Connect Secure/ Pulse Policy Secure 5.4 -2020-09-29
CVE-2020-16242 GE Reason S20 Ethernet Switch — Reason S20 Ethernet Switch 6.1 -2020-09-25
CVE-2020-15162 Stored XSS in PrestaShop — PrestaShop 5.4 Medium2020-09-24
CVE-2020-15161 Potential XSS in PrestaShop — PrestaShop 5.4 Medium2020-09-24
CVE-2020-8348 Lenovo Enterprise Network Disk 跨站脚本漏洞 — Enterprise Network Disk 6.1 Medium2020-09-24
CVE-2020-8347 Lenovo Enterprise Network Disk 跨站脚本漏洞 — Enterprise Network Disk 6.1 Medium2020-09-24

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21504 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.