Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21499

21499 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-13935 Siemens Polarion webclient 跨站脚本漏洞 — Polarion 3.5 Low2019-11-27
CVE-2019-13936 Siemens Polarion webclient 跨站脚本漏洞 — Polarion 3.5 Low2019-11-27
CVE-2019-13934 Siemens Polarion webclient 跨站脚本漏洞 — Polarion 3.5 Low2019-11-27
CVE-2019-15968 Cisco Unified Communications Domain Manager Persistent Cross-Site Scripting Vulnerability — Cisco Unified Communications Domain Manager 5.4 -2019-11-26
CVE-2019-15994 Cisco Stealthwatch Enterprise Cross-Site Scripting Vulnerability — Cisco Stealthwatch Enterprise 6.1 -2019-11-26
CVE-2019-15973 Cisco Industrial Network Director Reflected Cross-Site Scripting Vulnerability — Cisco Industrial Network Director 6.1 -2019-11-26
CVE-2019-17632 Eclipse Jetty 跨站脚本漏洞 — Eclipse Jetty 5.8 -2019-11-25
CVE-2019-11291 RabbitMQ XSS attack via federation and shovel endpoints — RabbitMQ 4.8 -2019-11-22
CVE-2019-16763 XSS in Pannellum from 2.5.0 through 2.5.4 — pannellum 4.8 Medium2019-11-22
CVE-2018-10854 Red Hat CloudForms 跨站脚本漏洞 — cloudforms 5.4 -2019-11-22
CVE-2019-6853 Schneider Electric Andover Continuum 跨站脚本漏洞 — Andover Continuum models 9680, 5740 and 5720, bCX4040, bCX9640, 9900, 9940, 9924 and 9702 6.1 -2019-11-20
CVE-2019-15072 Openfind MAIL2000 Webmail Post-Auth Cross-Site Scripting — MAIL2000 6.1 -2019-11-20
CVE-2019-15071 Openfind MAIL2000 Webmail Pre-Auth Cross-Site Scripting — MAIL2000 6.1 -2019-11-20
CVE-2019-10219 Hibernate Validator 跨站脚本漏洞 — hibernate-validator 5.4 -2019-11-08
CVE-2019-6142 Forcepoint Email Security 跨站脚本漏洞 — Forcepoint Email Security 6.1 -2019-11-05
CVE-2019-15587 Loofah gem for Ruby 跨站脚本漏洞 — Loofah (rubygem) 6.1 -2019-10-22
CVE-2019-15280 Cisco Firepower Management Center Software Stored Cross-Site Scripting Vulnerability — Cisco Firepower Management Center 4.8 -2019-10-16
CVE-2019-15281 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability — Cisco Identity Services Engine Software 4.8 -2019-10-16
CVE-2019-15269 Cisco Firepower Management Center Multiple Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 -2019-10-16
CVE-2019-15270 Cisco Firepower Management Center Stored Cross-Site Scripting Vulnerability — Cisco Firepower Management Center 6.1 -2019-10-16
CVE-2019-15268 Cisco Firepower Management Center Multiple Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center 4.8 -2019-10-16
CVE-2019-12705 Cisco Expressway Series and TelePresence Video Communication Server Cross-Site Scripting Vulnerability — Cisco TelePresence Video Communication Server (VCS) 6.1 -2019-10-16
CVE-2019-12718 Cisco Small Business Smart and Managed Switches Cross-Site Scripting Vulnerability — Cisco Small Business 200 Series Smart Switches 6.1 -2019-10-16
CVE-2019-12703 Cisco SPA122 ATA with Router Devices DHCP Services Cross-Site Scripting Vulnerability — Cisco SPA122 ATA with Router 5.2 -2019-10-16
CVE-2019-12638 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability — Cisco Identity Services Engine Software 5.4 -2019-10-16
CVE-2019-12702 Cisco SPA100 Series Analog Telephone Adapters Reflected Cross-Site Scripting Vulnerability — Cisco SPA112 2-Port Phone Adapter 5.4 -2019-10-16
CVE-2019-12637 Cisco Identity Services Engine Multiple Stored Cross-Site Scripting Vulnerabilities — Cisco Identity Services Engine Software 5.4 -2019-10-16
CVE-2019-11281 RabbitMQ XSS attack — RabbitMQ 4.8 -2019-10-16
CVE-2019-0047 Junos OS: Persistent XSS vulnerability in J-Web — Junos OS 8.8 High2019-10-09
CVE-2019-10215 Bootstrap-3-Typeahead 跨站脚本漏洞 — bootstrap3-typeahead.js 6.1 -2019-10-08

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21499 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.