CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21520

21520 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2020-8264	Rails 跨站脚本漏洞 — https://github.com/rails/rails	6.1	-	2021-01-06
CVE-2020-8280	Nextcloud 跨站脚本漏洞 — Nextcloud Contacts	5.4	-	2021-01-06
CVE-2020-8281	Nextcloud 跨站脚本漏洞 — Nextcloud Contacts	5.4	-	2021-01-06
CVE-2020-8160	Siemens Mendix 跨站脚本漏洞 — MendixSSO	6.1	-	2021-01-06
CVE-2020-35170	Dell EMC Unisphere for PowerMax 跨站脚本漏洞 — Unisphere for PowerMax	6.3	Medium	2021-01-05
CVE-2020-29497	DELL Dell Wyse Management Suite 跨站脚本漏洞 — Wyse Management Suite	5.4	-	2021-01-04
CVE-2020-29496	DELL Dell Wyse Management Suite 跨站脚本漏洞 — Wyse Management Suite	4.8	-	2021-01-04
CVE-2020-26297	XSS in mdBook's search page — mdBook	8.2	High	2021-01-04
CVE-2020-35741	HGiga MailSherlock - XSS -2 — MailSherlock MSR45/SSR45	7.0	High	2020-12-31
CVE-2020-35740	HGiga MailSherlock - XSS -1 — MailSherlock MSR45/SSR45	7.0	High	2020-12-31
CVE-2020-26296	XSS in Vega — vega	8.7	High	2020-12-30
CVE-2020-26287	Stored XSS in mermaid diagrams — hedgedoc	8.7	High	2020-12-28
CVE-2020-2503	Stored cross-site scripting vulnerability in QES — QES	9.0	Critical	2020-12-24
CVE-2020-6159	Opera Software Opera 跨站脚本漏洞 — Opera for Android	6.1	-	2020-12-23
CVE-2018-15641	Odoo 跨站脚本漏洞 — Odoo Community	5.4	-	2020-12-22
CVE-2018-15634	Odoo 跨站脚本漏洞 — Odoo Community	6.1	-	2020-12-22
CVE-2018-15638	Odoo 跨站脚本漏洞 — Odoo Community	5.4	-	2020-12-22
CVE-2018-15633	Odoo 跨站脚本漏洞 — Odoo Community	6.1	-	2020-12-22
CVE-2020-26280	XSS in OpenSlides — OpenSlides	8.9	High	2020-12-18
CVE-2020-12517	Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vulnerable website (local privilege escalation). — AXC F 1152 (1151412)	8.8	High	2020-12-17
CVE-2020-26198	DELL Dell EMC iDRAC9 跨站脚本漏洞 — Integrated Dell Remote Access Controller (iDRAC)	6.1	-	2020-12-16
CVE-2019-19288	Siemens XHQ 跨站脚本漏洞 — XHQ	5.4	-	2020-12-14
CVE-2019-19284	Siemens XHQ 跨站脚本漏洞 — XHQ	5.4	-	2020-12-14
CVE-2020-24445	Cross-site Scripting Vulnerability in Commenting Function of Adobe Experience Manager (AEM) — Experience Manager	9.0	Critical	2020-12-10
CVE-2020-2498	Cross-site scripting vulnerability in QTS and QuTS hero — QTS	6.1	-	2020-12-10
CVE-2020-2497	Cross-site scripting vulnerability in QTS and QuTS hero — QTS	6.1	-	2020-12-10
CVE-2020-2496	Cross-site scripting vulnerability in QTS and QuTS hero — QTS	6.1	-	2020-12-10
CVE-2020-2495	Cross-site scripting vulnerability in QTS and QuTS hero — QTS	6.1	-	2020-12-10
CVE-2020-2494	Cross-site Scripting Vulnerability in Music Station — Music Station	6.1	-	2020-12-10
CVE-2020-2493	Cross-site Scripting Vulnerability in Multimedia Console — Multimedia Console	6.1	-	2020-12-10

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21520 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21520