CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21499

21499 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2019-1930	Cisco Firepower Management Center RSS Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center	6.1	-	2019-07-06
CVE-2019-1931	Cisco Firepower Management Center RSS Cross-Site Scripting Vulnerabilities — Cisco Firepower Management Center	6.1	-	2019-07-06
CVE-2019-11827	Synology Note Station 跨站脚本漏洞 — Note Station	6.5	Medium	2019-06-30
CVE-2019-11828	Synology Office 跨站脚本漏洞 — Office	5.5	Medium	2019-06-30
CVE-2019-11825	Synology Calendar 跨站脚本漏洞 — Calendar	6.5	Medium	2019-06-30
CVE-2019-10177	Red Hat CloudForms 跨站脚本漏洞 — CloudForms	5.4	-	2019-06-27
CVE-2019-3872	Red Hat JBoss Enterprise Application Platform Picketlink 跨站脚本漏洞 — picketlink	5.4	-	2019-06-12
CVE-2019-3873	Red Hat JBoss Enterprise Application Platform 跨站脚本漏洞 — picketlink	9.6	-	2019-06-12
CVE-2019-1882	Cisco Industrial Network Director Stored Cross-Site Scripting Vulnerability — Cisco Industrial Network Director	5.4	-	2019-06-05
CVE-2019-1870	Cisco Enterprise Chat and Email Cross-Site Scripting Vulnerability — Cisco Enterprise Chat and Email	6.1	-	2019-06-05
CVE-2018-5405	The Quest Kace K1000 Appliance is vulnerable to JavaScript injection. — K1000 Appliance	5.4	-	2019-06-03
CVE-2018-7834	Schneider Electric TSXETG100 跨站脚本漏洞 — ConneXium Gateway, TSXETG100 - all versions	6.1	-	2019-05-22
CVE-2019-1733	Cisco NX-OS Software NX-API Sandbox Cross-Site Scripting Vulnerability — Cisco NX-OS Software	5.4	-	2019-05-15
CVE-2019-1856	Cisco Prime Collaboration Assurance Cross-Site Scripting Vulnerability — Cisco Prime Collaboration Assurance	6.1	-	2019-05-03
CVE-2019-1838	Cisco Application Policy Infrastructure Controller Web-Based Management Interface Cross-Site Scripting Vulnerability — Cisco Application Policy Infrastructure Controller (APIC)	5.4	-	2019-05-03
CVE-2019-1852	Cisco Prime Network Registrar Cross-Site Scripting Vulnerability — Cisco Prime Network Registrar	6.1	-	2019-05-03
CVE-2019-1701	Cisco Adaptive Security Appliance and Firepower Threat Defense Software WebVPN Cross-Site Scripting Vulnerabilities — Cisco Adaptive Security Appliance (ASA) Software	5.4	-	2019-05-03
CVE-2019-6562	Philips Tasy EMR 跨站脚本漏洞 — Philips Tasy EMR	5.4	-	2019-05-01
CVE-2019-3929	多款路由器命令操作系统命令注入漏洞 — Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4.	9.8	-	2019-04-30
CVE-2019-3926	Crestron Electronics AM-100和Crestron Electronics AM-101 命令操作系统命令注入漏洞 — Crestron AirMedia	9.8	-	2019-04-30
CVE-2019-3925	Crestron Electronics AM-100和Crestron Electronics AM-101 命令操作系统命令注入漏洞 — Crestron AirMedia	9.8	-	2019-04-30
CVE-2019-10241	Eclipse Jetty 跨站脚本漏洞 — Eclipse Jetty	6.1	-	2019-04-22
CVE-2019-1802	Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability — Cisco Firepower Management Center	5.4	-	2019-04-18
CVE-2019-1792	Cisco Umbrella Cross-Site Scripting Vulnerability — Cisco Umbrella	6.1	-	2019-04-18
CVE-2019-1777	Cisco Registered Envelope Service Stored Cross-Site Scripting Vulnerability — Cisco Registered Envelope Service	5.4	-	2019-04-18
CVE-2019-1719	Cisco Identity Services Engine Cross-Site Scripting Vulnerability — Cisco Identity Services Engine Software	5.4	-	2019-04-18
CVE-2018-15635	Odoo 跨站脚本漏洞 — Odoo Community	6.1	-	2019-04-09
CVE-2018-19006	OSIsoft PI 跨站脚本漏洞 — PI Vision	4.8	-	2019-04-08
CVE-2019-1827	Cisco Small Business RV320 and RV325 Routers Online Help Reflected Cross-Site Scripting Vulnerability — Cisco Small Business RV Series Router Firmware	6.1	-	2019-04-04
CVE-2019-5422	buttle npm package 跨站脚本漏洞 — buttle	6.1	-	2019-04-03

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21499 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21499