Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-80 (Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)) — Vulnerability Class 399

399 vulnerabilities classified as CWE-80 (Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-47139 F5 BIG-IQ Vulnerability — BIG-IQ 6.8 Medium2024-10-16
CVE-2023-32193 Norman API Cross-site Scripting Vulnerability — norman 8.3 High2024-10-16
CVE-2023-32192 Rancher API Server Cross-site Scripting Vulnerability — apiserver 8.3 High2024-10-16
CVE-2024-38039 BUG-000161683 - HTML injection vulnerability in Portal for ArcGIS. — Portal for ArcGIS 5.4 Medium2024-10-04
CVE-2024-8981 Broken Link Checker <= 2.4.0 - Reflected Cross-Site Scripting — Broken Link Checker 7.1 High2024-10-01
CVE-2024-47536 starcitizentools/citizen-skin vulnerable to stored, self-XSS in the "real name" field — mediawiki-skins-Citizen 5.4 -2024-09-30
CVE-2024-8872 Store Hours for WooCommerce <= 4.3.20 - Reflected Cross-Site Scripting — Store Hours for WooCommerce 6.1 Medium2024-09-26
CVE-2024-8680 MailChimp for Wordpress <= 4.9.16 - Authenticated (Administrator+) Stored Cross-Site Scripting — MC4WP: Mailchimp for WordPress 4.4 Medium2024-09-21
CVE-2021-27915 XSS Cross-site Scripting Stored (XSS) - Description field — Mautic 7.6 High2024-09-17
CVE-2024-2010 Reflected XSS in TE Informatics' V5 Software — V5 6.1AIMediumAI2024-09-12
CVE-2024-45406 Craft CMS stored XSS in breadcrumb list and title fields — cms 5.5 Medium2024-09-09
CVE-2024-38859 XSS in view page with SLA column — Checkmk 5.4AIMediumAI2024-08-26
CVE-2024-8145 ClassCMS Article admin cross site scripting — ClassCMS 2.4 Low2024-08-25
CVE-2024-7629 Responsive Video <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Responsive Video 6.4 Medium2024-08-21
CVE-2024-41697 Priority – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) — Priority 6.1 Medium2024-08-20
CVE-2024-41947 XWiki Platform XSS through conflict resolution — xwiki-platform 9.1 Critical2024-07-31
CVE-2024-41693 Mashov - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) — Mashov 6.1 Medium2024-07-30
CVE-2024-32484 Ankitects Anki 安全漏洞 — Anki 7.4 High2024-07-22
CVE-2023-35006 IBM Security ReaQta HTML injection — Security QRadar EDR 5.4 Medium2024-07-10
CVE-2024-25639 Prompt Injection triggered XSS vulnerability in Khoj Obsidian, Desktop and Web clients — khoj 5.9 Medium2024-07-08
CVE-2024-6052 XSS in SQL check parameters — Checkmk 6.5 Medium2024-07-03
CVE-2024-28832 XSS in Crash Report Page — Checkmk 4.8 Medium2024-06-25
CVE-2024-28831 XSS in confirmation pop-up — Checkmk 5.4 Medium2024-06-25
CVE-2024-6251 playSMS New Phonebook cross site scripting — playSMS 2.4 Low2024-06-22
CVE-2022-38055 WordPress wpForo Forum plugin <= 2.0.9 - Auth. HTML Injection vulnerability — wpForo Forum 4.3 Medium2024-06-21
CVE-2024-6183 EZ-Suite EZ-Partner Forgot Password cross site scripting — EZ-Partner 4.3 Medium2024-06-20
CVE-2024-6108 Genexis Tilgin Home Gateway Login cross site scripting — Tilgin Home Gateway 4.3 Medium2024-06-18
CVE-2024-5741 XSS in inventory view — Checkmk 6.5 Medium2024-06-17
CVE-2024-36395 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) — WFO 6.1 Medium2024-06-13
CVE-2024-5851 playSMS SMS Schedule cross site scripting — playSMS 3.5 Low2024-06-11

Vulnerabilities classified as CWE-80 (Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)) represent 399 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.