Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21570

21570 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-23830 WordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS) — ProfilePress 7.1 High2023-05-03
CVE-2023-23875 WordPress Bing Site Verification plugin using Meta Tag Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS) — Bing Site Verification plugin using Meta Tag 5.9 Medium2023-05-03
CVE-2023-23881 WordPress Circles Gallery Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS) — Circles Gallery 5.9 Medium2023-05-03
CVE-2023-27378 BIG-IP TMUI XSS vulnerability — BIG-IP 7.5 High2023-05-03
CVE-2023-23808 WordPress Sponsors Carousel Plugin <= 4.02 is vulnerable to Cross Site Scripting (XSS) — Sponsors Carousel 5.9 Medium2023-05-03
CVE-2023-23809 WordPress Stock market charts from finviz Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS) — Stock market charts from finviz 5.9 Medium2023-05-03
CVE-2023-23785 WordPress Exquisite PayPal Donation Plugin <= v2.0.0 is vulnerable to Cross Site Scripting (XSS) — Exquisite PayPal Donation 5.9 Medium2023-05-03
CVE-2022-46852 WordPress WP Table Builder – WordPress Table Plugin Plugin <= 1.4.6 is vulnerable to Cross Site Scripting (XSS) — WP Table Builder 5.9 Medium2023-05-03
CVE-2023-22683 WordPress Clio Grow Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS) — Clio Grow 5.9 Medium2023-05-03
CVE-2023-25979 WordPress Video Gallery – YouTube Gallery Plugin <= 1.7.6 is vulnerable to Cross Site Scripting (XSS) — Video Gallery 5.9 Medium2023-05-03
CVE-2023-23876 WordPress wpDataTables Plugin <= 2.1.49 is vulnerable to Cross Site Scripting (XSS) — wpDataTables 6.5 Medium2023-05-03
CVE-2023-23874 WordPress Ditty Plugin <= 3.0.32 is vulnerable to Cross Site Scripting (XSS) — Ditty 6.5 Medium2023-05-03
CVE-2023-23820 WordPress ProfilePress Plugin <= 4.5.4 is vulnerable to Cross Site Scripting (XSS) — ProfilePress 6.5 Medium2023-05-03
CVE-2023-23708 WordPress Visualizer Plugin <= 3.9.4 is vulnerable to Cross Site Scripting (XSS) — Visualizer: Tables and Charts Manager for WordPress 6.5 Medium2023-05-03
CVE-2023-22713 WordPress Gutenberg Blocks by WordPress Download Manager Plugin <= 2.1.8 is vulnerable to Cross Site Scripting (XSS) — Gutenberg Blocks by WordPress Download Manager 6.5 Medium2023-05-03
CVE-2023-25796 WordPress WP BaiDu Submit Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) — WP BaiDu Submit 5.9 Medium2023-05-03
CVE-2023-25798 WordPress Olevmedia Shortcodes Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS) — Olevmedia Shortcodes 6.5 Medium2023-05-03
CVE-2023-25786 WordPress Eyes Only: User Access Shortcode Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS) — Eyes Only: User Access Shortcode 5.9 Medium2023-05-03
CVE-2023-25789 WordPress Tapfiliate Plugin <= 3.0.12 is vulnerable to Cross Site Scripting (XSS) — Tapfiliate 5.9 Medium2023-05-03
CVE-2023-25783 WordPress FireCask Like & Share Button Plugin <= 1.1.5 is vulnerable to Cross Site Scripting (XSS) — FireCask Like & Share Button 5.9 Medium2023-05-03
CVE-2023-25787 WordPress WP资源下载管理 Plugin <= 1.3.9 is vulnerable to Cross Site Scripting (XSS) — WP资源下载管理 5.9 Medium2023-05-03
CVE-2023-25797 WordPress vSlider Multi Image Slider for WordPress Plugin <= 4.1.2 is vulnerable to Cross Site Scripting (XSS) — vSlider Multi Image Slider for WordPress 5.9 Medium2023-05-03
CVE-2023-25784 WordPress Sticky Ad Bar Plugin <= 1.3.1 is vulnerable to Cross Site Scripting (XSS) — Sticky Ad Bar Plugin 5.9 Medium2023-05-03
CVE-2023-25792 WordPress WP Open Social Plugin <= 5.0 is vulnerable to Cross Site Scripting (XSS) — WP Open Social 5.9 Medium2023-05-03
CVE-2023-2477 Funadmin Cx.php tagLoad cross site scripting — Funadmin 3.5 Low2023-05-02
CVE-2023-2476 Dromara J2eeFAST Announcement cross site scripting — J2eeFAST 3.5 Low2023-05-02
CVE-2023-2475 Dromara J2eeFAST System Message cross site scripting — J2eeFAST 3.5 Low2023-05-02
CVE-2023-23723 WordPress WordPress Email Marketing Plugin – WP Email Capture Plugin <= 3.9.3 is vulnerable to Cross Site Scripting (XSS) — WP Email Capture 5.9 Medium2023-05-02
CVE-2014-125100 BestWebSoft Job Board Plugin cross site scripting — Job Board Plugin 3.5 Low2023-05-02
CVE-2013-10026 Mail Subscribe List Plugin index.php cross site scripting — Mail Subscribe List Plugin 3.5 Low2023-05-02

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21570 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.