Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21524

21524 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-33135 IBM Financial Transaction Manager for ACH Services and Check Services is impacted by multiple vulnerabilities — Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 6.1 Medium2026-02-17
CVE-2026-2622 Blossom Article Title ArticleController.java content cross site scripting — Blossom 3.5 Low2026-02-17
CVE-2026-26357 Dell Unisphere for PowerMax 跨站脚本漏洞 — Unisphere for PowerMax 9.2.4.18 5.4 Medium2026-02-17
CVE-2025-36019 Multiple Vulnerabilities in IBM Concert Software. — Concert 6.1 Medium2026-02-17
CVE-2026-23861 Dell Unisphere for PowerMax vApp 跨站脚本漏洞 — Unisphere for PowerMax vApp, 5.4 Medium2026-02-17
CVE-2025-8303 XSS in EKA Software's Real Estate Script V5 (With Doping Module – Store Module – New Language System) — Real Estate Script V5 (With Doping Module – Store Module – New Language System) 6.5 Medium2026-02-17
CVE-2026-1216 RSS Aggregator <= 5.0.10 - Reflected Cross-Site Scripting via 'template' Parameter — RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging 7.2 High2026-02-17
CVE-2026-2002 Forminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.50.2 - Authenticated (Administrator+) Stored Cross-Site Scripting — Forminator Forms – Contact Form, Payment Form & Custom Form Builder 4.4 Medium2026-02-17
CVE-2019-25395 Smoothwall Express 3.1 'preferences.cgi' Cross-Site Scripting — Smoothwall Express 7.2 High2026-02-16
CVE-2019-25394 Smoothwall Express 3.1 'modem.cgi' Cross-Site Scripting — Smoothwall Express 7.2 High2026-02-16
CVE-2019-25393 Smoothwall Express 3.1 'smoothinfo.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25392 Smoothwall Express 3.1 'iptools.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25390 Smoothwall Express 3.1 'interfaces.cgi' Cross-Site Scripting — Smoothwall Express 5.4 Medium2026-02-16
CVE-2019-25389 Smoothwall Express 3.1 'timedaccess.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25388 Smoothwall Express 3.1 'ipblock.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25387 Smoothwall Express 3.1 'xtaccess.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25386 Smoothwall Express 3.1 'dmzholes.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25385 Smoothwall Express 3.1 'outgoing.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25384 Smoothwall Express 3.1 'portfw.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25382 Smoothwall Express 3.1 'time.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25383 Smoothwall Express 3.1 'apcupsd.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25381 Smoothwall Express 3.1 'hosts.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25380 Smoothwall Express 3.1 'dhcp.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2019-25379 Smoothwall Express 3.1 'urlfilter.cgi' Cross-Site Scripting — Smoothwall Express 7.2 High2026-02-16
CVE-2019-25378 Smoothwall Express 3.1 'proxy.cgi' Cross-Site Scripting — Smoothwall Express 6.1 Medium2026-02-16
CVE-2026-26930 SmarterTools SmarterMail 安全漏洞 — SmarterMail 7.2 High2026-02-16
CVE-2026-2101 Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19 — ENOVIAvpm Web Access 8.7 High2026-02-16
CVE-2026-2557 cskefu File Upload MediaController.java upload cross site scripting — cskefu 3.5 Low2026-02-16
CVE-2025-59904 Stored Cross-Site Scripting vulnerability in Kubysoft — Kubysoft 5.4AIMediumAI2026-02-16
CVE-2025-59903 Stored Cross-Site Scripting (XSS) in Kubysoft — Kubysoft 5.4AIMediumAI2026-02-16

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21524 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.