CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21520

21520 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2020-9736	Stored XSS in AEM's Content Repository Development Environment — Experience Manager	6.8	Medium	2020-09-10
CVE-2020-9735	Stored XSS in AEM's Content Repository Development Environment — Experience Manager	6.8	Medium	2020-09-10
CVE-2020-9732	Stored XSS in AEM Sites Components — Experience Manager	9.0	Critical	2020-09-10
CVE-2020-9738	Stored XSS in AEM's Content Repository Development Environment — Experience Manager	6.8	Medium	2020-09-10
CVE-2020-9737	Stored XSS in AEM's Content Repository Development Environment — Experience Manager	6.8	Medium	2020-09-10
CVE-2020-9740	Stored XSS in AEM Design Importer Component — Experience Manager	9.0	Critical	2020-09-10
CVE-2020-2036	PAN-OS: Reflected Cross-Site Scripting (XSS) vulnerability in management web interface — PAN-OS	8.8	High	2020-09-09
CVE-2019-11928	WhatsApp 跨站脚本漏洞 — WhatsApp Desktop	6.1	-	2020-09-03
CVE-2020-16210	Red Lion N-Tron 跨站脚本漏洞 — N-Tron 702-W / 702M12-W	9.6	-	2020-09-01
CVE-2020-16206	Red Lion N-Tron 跨站脚本漏洞 — N-Tron 702-W / 702M12-W	8.9	-	2020-09-01
CVE-2020-15159	Cross Site Scripting leading to RCE in baserCMS — basercms	7.6	High	2020-08-28
CVE-2020-15155	Cross-Site Scripting in baserCMS — basercms	7.3	High	2020-08-28
CVE-2020-15154	Cross Site Scripting in baserCMS — basercms	7.3	High	2020-08-28
CVE-2020-3439	Cisco Data Center Network Manager Stored Cross-Site Scripting Vulnerability — Cisco Data Center Network Manager	5.4	-	2020-08-26
CVE-2020-3466	Cisco DNA Center Cross-Site Scripting Vulnerabilities — Cisco Digital Network Architecture Center (DNA Center)	6.1	-	2020-08-26
CVE-2020-3491	Cisco Vision Dynamic Signage Director Stored Cross-Site Scripting Vulnerability — Cisco Vision Dynamic Signage Director	5.5	Medium	2020-08-26
CVE-2020-3518	Cisco Data Center Network Manager Cross-Site Scripting Vulnerability — Cisco Data Center Network Manager	6.5	Medium	2020-08-26
CVE-2020-3523	Cisco Data Center Network Manager Cross-Site Scripting Vulnerability — Cisco Data Center Network Manager	6.5	Medium	2020-08-26
CVE-2020-7309	Cross Site Scripting vulnerability in ePO extension of MACC — McAfee Application and Change Control	3.9	Low	2020-08-26
CVE-2020-8189	Nextcloud Desktop client 跨站脚本漏洞 — Desktop Client	5.4	-	2020-08-21
CVE-2020-15119	DOM-based XSS in auth0-lock — lock	6.4	Medium	2020-08-19
CVE-2020-14333	Red Hat oVirt 跨站脚本漏洞 — ovirt-engine	6.3	Medium	2020-08-18
CVE-2020-3346	Cisco Unified Communications Manager Cross-Site Scripting Vulnerability — Cisco Unified Communications Manager	6.1	Medium	2020-08-17
CVE-2020-3463	Cisco Webex Meetings Reflected Cross-Site Scripting Vulnerability — Cisco Webex Meetings	6.1	Medium	2020-08-17
CVE-2020-3464	Cisco UCS Director Stored Cross-Site Scripting Vulnerability — Cisco UCS Director	4.8	Medium	2020-08-17
CVE-2020-8208	Citrix Systems XenMobile Server 跨站脚本漏洞 — Citrix XenMobile Server	6.1	-	2020-08-17
CVE-2020-15781	Siemens SICAM A8000 RTUs 跨站脚本漏洞 — SICAM WEB firmware for SICAM A8000 RTUs	9.6	-	2020-08-14
CVE-2020-7303	DLP ePO extension - Cross-site scripting — DLP ePO extension	4.1	Medium	2020-08-13
CVE-2020-7301	DLP ePO extension - Cross site scripting — DLP ePO extension	4.1	Medium	2020-08-12
CVE-2020-13176	Teradici Cloud Access Connector和Cloud Access Connector Legacy 跨站脚本漏洞 — - Cloud Access Connector - Cloud Access Connector Legacy	6.1	-	2020-08-11

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21520 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21520