Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21517

21517 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-1760 Red Hat Ceph Object Gateway 跨站脚本漏洞 — ceph 5.8 Medium2020-04-23
CVE-2020-8477 ABB System 800xA Information Manager Remote Code Execution — System 800xA Information Manager 8.8 High2020-04-22
CVE-2020-5286 Reflected XSS related in import page in PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5271 Reflected XSS with dashboard calendar of PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5272 Reflected XSS on Search page of PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5276 Reflected XSS on AdminCarts page of PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5278 Reflected XSS on Exception page of PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5285 Reflected XSS with back parameter in PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5269 Reflected XSS on AdminFeatures page of PrestaShop — PrestaShop 4.1 Medium2020-04-20
CVE-2020-5264 Reflected XSS in security compromised page of PrestaShop — PrestaShop 4.4 Medium2020-04-20
CVE-2020-5265 Reflected XSS on AdminAttributesGroups page of PrestaShop — PrestaShop 4.4 Medium2020-04-20
CVE-2020-5266 Stored XSS on back office edit page — ps_linklist 4.4 Medium2020-04-16
CVE-2020-5273 Stored XSS with custom URLs in PrestaShop module ps_linklist — ps_linklist 4.1 Medium2020-04-16
CVE-2020-5294 Reflected XSS with social networks fields — ps_socialfollow 4.1 Medium2020-04-16
CVE-2020-5346 Dell RSA Authentication Manager 跨站脚本漏洞 — RSA Authentication Manager 4.8 Medium2020-04-15
CVE-2020-7574 Siemens Climatix POL908和POL909 跨站脚本漏洞 — Climatix POL908 (BACnet/IP module) 6.1 -2020-04-14
CVE-2020-9056 Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting — BuySpeed 3.9 Low2020-04-10
CVE-2020-10633 HMS Networks eWON Flexy和eWON Cosy 跨站脚本漏洞 — eWON Flexy and Cosy 6.1 -2020-04-08
CVE-2019-10180 pki-core 跨站脚本漏洞 — pki-core 2.4 Low2020-03-31
CVE-2019-9509 The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected cross site scripting — Avocent UMG-4000 6.3 Medium2020-03-30
CVE-2020-9055 Versiant Lynx Customer Service Portal version 3.5.2 is vulnerable to stored cross-site scripting, which may allow an attacker to execute arbitrary JavaScript — LYNX Customer Service Portal 3.9 Low2020-03-30
CVE-2019-9508 Vertiv Avocent UMG-4000 version 4.2.1.19 web interface is vulnerable to stored cross site scripting — Avocent UMG-4000 6.3 Medium2020-03-30
CVE-2020-1771 Possible XSS in Customer user address book — ((OTRS)) Community Edition 4.6 Medium2020-03-27
CVE-2020-10509 Sunnet eHRD - Cross-Site Scripting — eHRD 6.1 Medium2020-03-27
CVE-2020-8923 XSS in Dart — Dart SDK 5.4 Medium2020-03-26
CVE-2020-5339 Dell RSA Authentication Manager 跨站脚本漏洞 — RSA Authentication Manager 4.8 -2020-03-25
CVE-2020-5340 Dell RSA Authentication Manager 跨站脚本漏洞 — RSA Authentication Manager 4.8 -2020-03-25
CVE-2020-5277 Reflected XSS with url_name parameter of PrestaShop module ps_facetedsearch — ps_facetedsearch 4.1 Medium2020-03-25
CVE-2020-7482 Schneider Electric Andover Continuum 跨站脚本漏洞 — Andover Continuum (All versions) 6.1 -2020-03-23
CVE-2020-7481 Schneider Electric Andover Continuum 跨站脚本漏洞 — Andover Continuum (All versions) 6.1 -2020-03-23

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21517 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.