Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21499

21499 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-6146 Forcepoint Web Security 跨站脚本漏洞 — Forcepoint Web Security 6.1 -2020-01-22
CVE-2019-18426 Facebook WhatsApp 跨站脚本漏洞 — WhatsApp Desktop 8.2 -2020-01-21
CVE-2019-17634 Eclipse Memory Analyzer 跨站脚本漏洞 — Eclipse Memory Analyzer 5.4 -2020-01-17
CVE-2019-10957 多款Geutebrück产品跨站脚本漏洞 — Geutebruck IP Cameras 4.8 -2020-01-17
CVE-2019-3686 XSS in distri and version parameter in openQA — openQA 6.5 Medium2020-01-17
CVE-2020-5398 RFD Attack via "Content-Disposition" Header Sourced from Request Input by Spring MVC or Spring WebFlux Application — Spring Framework 7.5 -2020-01-16
CVE-2019-18273 OSIsoft PI Vision 跨站脚本漏洞 — OSIsoft PI Vision 5.4 -2020-01-15
CVE-2020-1607 Junos OS: Cross-Site Scripting (XSS) in J-Web — Junos OS 7.5 High2020-01-15
CVE-2019-18588 Dell EMC Unisphere for PowerMax 跨站脚本漏洞 — Unisphere for PowerMax 5.4 -2020-01-10
CVE-2020-1766 Improper handling of uploaded inline images — ((OTRS)) Community Edition 2.0 Low2020-01-10
CVE-2019-15602 fileview 跨站脚本漏洞 — fileview 6.1 -2020-01-06
CVE-2019-15603 seeftl 跨站脚本漏洞 — seeftl 6.1 -2020-01-06
CVE-2019-9542 Telos Automated Message Handling System reflected XSS in itemlookup.asp — Automated Message Handling System 6.1 -2020-01-03
CVE-2019-9539 Telos Automated Message Handling System reflected XSS in ModalWindowPopup.asp — Automated Message Handling System 6.1 -2020-01-03
CVE-2019-9540 Telos Automated Message Handling System reflected XSS in prefs.asp — Automated Message Handling System 6.1 -2020-01-03
CVE-2019-9537 Telos Automated Message Handling System reflected XSS in uploaditem.asp — Automated Message Handling System 6.1 -2020-01-03
CVE-2019-9538 Telos Automated Message Handling System reflected XSS in LDAP cbURL parameter — Automated Message Handling System 6.1 -2020-01-03
CVE-2019-14863 AngularJS 跨站脚本漏洞 — angular: 6.1 -2020-01-02
CVE-2019-14862 knockout 跨站脚本漏洞 — knockout 6.1 -2020-01-02
CVE-2019-16781 Stored cross-site scripting (XSS) in WordPress block editor — WordPress 5.8 Medium2019-12-26
CVE-2019-16780 Stored cross-site scripting (XSS) in WordPress block editor — WordPress 5.8 Medium2019-12-26
CVE-2019-18249 Reliable Controls MACH-ProWebSys和Reliable Controls MACH-ProWebCom 跨站脚本漏洞 — Reliable Controls MACH-ProWebCom/Sys 8.8 -2019-12-24
CVE-2019-18571 Dell RSA Identity Governance and Lifecycle和RSA Via Lifecycle and Governance 跨站脚本漏洞 — RSA Identity Governance & Lifecycle 5.4 -2019-12-18
CVE-2019-7621 Elasticsearch Kibana 跨站脚本漏洞 — Kibana 5.4 -2019-12-18
CVE-2019-18267 S2020/S2020G Fast Switch 61850 跨站脚本漏洞 — GE S2020/S2020G Fast Switch 61850 5.4 -2019-12-18
CVE-2019-13943 Siemens EN100 Ethernet Module 跨站脚本漏洞 — EN100 Ethernet module DNP3 variant 6.1 -2019-12-12
CVE-2019-7004 Avaya IP Office XSS Vulnerability — IP Office Application Server 6.1 -2019-12-11
CVE-2019-16772 regular expressions Cross-Site Scripting (XSS) vulnerability in serialize-to-js — serialize-to-js 3.1 Low2019-12-06
CVE-2019-16769 Affected versions of serialize-javascript are vulnerable to Cross-site Scripting (XSS) — serialize-javascript 4.2 Medium2019-12-05
CVE-2019-18574 Dell RSA Authentication Manager 跨站脚本漏洞 — RSA Authentication Manager 4.8 -2019-12-03

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21499 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.