Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21519

21519 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-4166 Wavlink WL-NU516U1 login.cgi sub_404F68 cross site scripting — WL-NU516U1 3.5 Low2026-03-15
CVE-2026-4165 Worksuite HR, CRM and Project Management create cross site scripting — HR, CRM and Project Management 2.4 Low2026-03-15
CVE-2026-32774 Vulnogram - Stored Cross-Site Scripting via Comment Hypertext — Vulnogram 6.4 Medium2026-03-14
CVE-2026-32635 Angular has XSS in i18n attribute bindings — compiler 6.1 -2026-03-13
CVE-2026-32626 AnythingLLM has a Streaming Phase XSS to RCE via LLM Response Injection — anything-llm 9.7 Critical2026-03-13
CVE-2023-40693 IBM Sterling B2B Integrator and IBM Sterling File Gateway Cross-Site Scripting — Sterling B2B Integrator 5.4 Medium2026-03-13
CVE-2025-14504 IBM Sterling B2B Integrator and IBM Sterling File Gateway Cross-Site Scripting — Sterling B2B Integrator 5.4 Medium2026-03-13
CVE-2026-0835 IBM Sterling B2B Integrator和IBM Sterling File Gateway 跨站脚本漏洞 — Sterling B2B Integrator 5.4 Medium2026-03-13
CVE-2025-12453 Improper neutralization of input during web page generation vulnerability has been discovered in OpenText™ Vertica. — Vertica 6.1 -2026-03-13
CVE-2025-12454 Improper neutralization of input during web page generation vulnerability has been discovered in OpenText™ Vertica. — Vertica 6.1 -2026-03-13
CVE-2026-32462 WordPress Master Addons for Elementor plugin <= 2.1.3 - Cross Site Scripting (XSS) vulnerability — Master Addons for Elementor 6.1 -2026-03-13
CVE-2026-32460 WordPress Ultimate Addons for Contact Form 7 plugin <= 3.5.36 - Cross Site Scripting (XSS) vulnerability — Ultimate Addons for Contact Form 7 6.1 -2026-03-13
CVE-2026-32454 WordPress Avada Core plugin < 5.15.0 - Cross Site Scripting (XSS) vulnerability — Avada Core 6.1 -2026-03-13
CVE-2026-32455 WordPress MDTF plugin <= 1.3.5 - Cross Site Scripting (XSS) vulnerability — MDTF 6.1 -2026-03-13
CVE-2026-32450 WordPress Active Products Tables for WooCommerce plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability — Active Products Tables for WooCommerce 6.1 -2026-03-13
CVE-2026-32449 WordPress Themify Event Post plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability — Themify Event Post 5.4 -2026-03-13
CVE-2026-32448 WordPress Podlove Podcast Publisher plugin <= 4.3.3 - Cross Site Scripting (XSS) vulnerability — Podlove Podcast Publisher 5.4 -2026-03-13
CVE-2026-32430 WordPress PowerPack Addons for Elementor plugin <= 2.9.9 - Cross Site Scripting (XSS) vulnerability — PowerPack Addons for Elementor 5.4 -2026-03-13
CVE-2026-32431 WordPress Astra Bulk Edit plugin <= 1.2.10 - Cross Site Scripting (XSS) vulnerability — Astra Bulk Edit 6.1 -2026-03-13
CVE-2026-32429 WordPress Magical Addons For Elementor plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability — Magical Addons For Elementor 5.4 -2026-03-13
CVE-2026-32424 WordPress Sprout Clients plugin <= 3.2.2 - Cross Site Scripting (XSS) vulnerability — Sprout Clients 5.4 -2026-03-13
CVE-2026-32419 WordPress List category posts plugin <= 0.93.1 - Cross Site Scripting (XSS) vulnerability — List category posts 6.1 -2026-03-13
CVE-2026-32411 WordPress Embed Calendly plugin <= 4.4 - Cross Site Scripting (XSS) vulnerability — Embed Calendly 5.4 -2026-03-13
CVE-2026-32403 WordPress Toocheke Companion plugin <= 1.194 - Cross Site Scripting (XSS) vulnerability — Toocheke Companion 6.1 -2026-03-13
CVE-2026-32361 WordPress Editorial Calendar plugin <= 3.9.0 - Cross Site Scripting (XSS) vulnerability — Editorial Calendar 6.1 -2026-03-13
CVE-2026-32360 WordPress Rich Showcase for Google Reviews plugin <= 6.9.4.3 - Cross Site Scripting (XSS) vulnerability — Rich Showcase for Google Reviews 5.4 -2026-03-13
CVE-2026-32359 WordPress Icon List Block plugin <= 1.2.3 - Cross Site Scripting (XSS) vulnerability — Icon List Block 5.4 -2026-03-13
CVE-2026-32356 WordPress Robo Gallery plugin <= 5.1.2 - Cross Site Scripting (XSS) vulnerability — Robo Gallery 6.1 -2026-03-13
CVE-2026-32351 WordPress PowerPress Podcasting plugin <= 11.15.13 - Cross Site Scripting (XSS) vulnerability — PowerPress Podcasting 5.4 -2026-03-13
CVE-2026-32352 WordPress Elementor Website Builder plugin <= 3.35.5 - Cross Site Scripting (XSS) vulnerability — Elementor Website Builder 6.1 -2026-03-13

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21519 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.