CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

BaseStableLikelihood: High

Description

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Hierarchy (View 1000)

Parents

CWE-74

Children

Related attack patterns (CAPEC)

CAPEC-209 · CAPEC-588 · CAPEC-591 · CAPEC-592 · CAPEC-63 · CAPEC-85

CVEs mapped to this weakness (23,294)

page 904 of 1,165

CVE	Vendor / Product	CVSS	EPSS	Published	Description
CVE-2020-7691	—	—	0.02	Jul 6, 2020	In all versions of the package jspdf, it is possible to use <script> in order to go over the filtering regex.
CVE-2020-8176	—	—	0.01	Jul 2, 2020	A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.61-v3.1.62 that allows an attacker to inject JS payloads into the `shop` parameter on the `/shopify/auth/enable_cookies` endpoint.
CVE-2020-4061	Octobercms October	—	0.01	Jul 2, 2020	In October from version 1.0.319 and before version 1.0.467, pasting content copied from malicious websites into the Froala richeditor could result in a successful self-XSS attack. This has been fixed in 1.0.467.
CVE-2020-2219	Jenkins Project Link Column Plugin	—	0.01	Jul 2, 2020	Jenkins Link Column Plugin 1.0 and earlier does not filter URLs of links created by users with View/Configure permission, resulting in a stored cross-site scripting vulnerability.
CVE-2020-2217	Jenkins Project Jenkins Compatibility Action Storage Plugin	—	0.01	Jul 2, 2020	Jenkins Compatibility Action Storage Plugin 1.0 and earlier does not escape the content coming from the MongoDB in the testConnection form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2214	Jenkins Project Jenkins Jira Pipeline Steps Plugin	—	0.01	Jul 2, 2020	Jenkins ZAP Pipeline Plugin 1.9 and earlier programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived artifacts, etc. that Jenkins offers for download.
CVE-2020-2207	Jenkins Project view-cloner Plugin	—	0.01	Jul 2, 2020	Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2206	Jenkins Project VncRecorder Plugin	—	0.01	Jul 2, 2020	Jenkins VncRecorder Plugin 1.25 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2205	Jenkins Project VncRecorder Plugin	—	0.01	Jul 2, 2020	Jenkins VncRecorder Plugin 1.25 and earlier does not escape a tool path in the `checkVncServ` form validation endpoint, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by Jenkins administrators.
CVE-2020-2201	Jenkins Project Sonargraph Integration Plugin	—	0.01	Jul 2, 2020	Jenkins Sonargraph Integration Plugin 3.0.0 and earlier does not escape the file path for the Log file field form validation, resulting in a stored cross-site scripting vulnerability.
CVE-2020-15500	—	—	0.12	Jul 1, 2020	An issue was discovered in server.js in TileServer GL through 3.0.0. The content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS.
CVE-2020-15400	—	—	0.00	Jun 30, 2020	CakePHP before 4.0.6 mishandles CSRF token generation. This might be remotely exploitable in conjunction with XSS.
CVE-2020-9577	Adobe Inc. Magento	—	0.01	Jun 26, 2020	Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure .
CVE-2020-9581	Adobe Inc. Magento	—	0.01	Jun 26, 2020	Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
CVE-2020-9584	Adobe Inc. Magento	—	0.01	Jun 26, 2020	Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
CVE-2020-15015	—	—	0.01	Jun 24, 2020	The FileExplorer component in GleamTech FileUltimate 6.1.5.0 allows XSS via an SVG document.
CVE-2016-11084	—	—	0.00	Jun 19, 2020	An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF.
CVE-2016-11083	—	—	0.01	Jun 19, 2020	An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
CVE-2016-11082	—	—	0.01	Jun 19, 2020	An issue was discovered in Mattermost Server before 2.2.0. It allows XSS via a crafted link.
CVE-2016-11079	—	—	0.01	Jun 19, 2020	An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a redirect URL.

CVE-2020-7691Jul 6, 2020
risk 0.00cvss —epss 0.02
In all versions of the package jspdf, it is possible to use <script> in order to go over the filtering regex.
CVE-2020-8176Jul 2, 2020
risk 0.00cvss —epss 0.01
A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.61-v3.1.62 that allows an attacker to inject JS payloads into the `shop` parameter on the `/shopify/auth/enable_cookies` endpoint.
CVE-2020-4061Jul 2, 2020
Octobercms
October
risk 0.00cvss —epss 0.01
In October from version 1.0.319 and before version 1.0.467, pasting content copied from malicious websites into the Froala richeditor could result in a successful self-XSS attack. This has been fixed in 1.0.467.
CVE-2020-2219Jul 2, 2020
Jenkins Project
Link Column Plugin
risk 0.00cvss —epss 0.01
Jenkins Link Column Plugin 1.0 and earlier does not filter URLs of links created by users with View/Configure permission, resulting in a stored cross-site scripting vulnerability.
CVE-2020-2217Jul 2, 2020
Jenkins Project
Jenkins Compatibility Action Storage Plugin
risk 0.00cvss —epss 0.01
Jenkins Compatibility Action Storage Plugin 1.0 and earlier does not escape the content coming from the MongoDB in the testConnection form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2214Jul 2, 2020
Jenkins Project
Jenkins Jira Pipeline Steps Plugin
risk 0.00cvss —epss 0.01
Jenkins ZAP Pipeline Plugin 1.9 and earlier programmatically disables Content-Security-Policy protection for user-generated content in workspaces, archived artifacts, etc. that Jenkins offers for download.
CVE-2020-2207Jul 2, 2020
Jenkins Project
view-cloner Plugin
risk 0.00cvss —epss 0.01
Jenkins VncViewer Plugin 1.7 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2206Jul 2, 2020
Jenkins Project
VncRecorder Plugin
risk 0.00cvss —epss 0.01
Jenkins VncRecorder Plugin 1.25 and earlier does not escape a parameter value in the checkVncServ form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.
CVE-2020-2205Jul 2, 2020
Jenkins Project
VncRecorder Plugin
risk 0.00cvss —epss 0.01
Jenkins VncRecorder Plugin 1.25 and earlier does not escape a tool path in the `checkVncServ` form validation endpoint, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by Jenkins administrators.
CVE-2020-2201Jul 2, 2020
Jenkins Project
Sonargraph Integration Plugin
risk 0.00cvss —epss 0.01
Jenkins Sonargraph Integration Plugin 3.0.0 and earlier does not escape the file path for the Log file field form validation, resulting in a stored cross-site scripting vulnerability.
CVE-2020-15500Jul 1, 2020
risk 0.00cvss —epss 0.12
An issue was discovered in server.js in TileServer GL through 3.0.0. The content of the key GET parameter is reflected unsanitized in an HTTP response for the application's main page, causing reflected XSS.
CVE-2020-15400Jun 30, 2020
risk 0.00cvss —epss 0.00
CakePHP before 4.0.6 mishandles CSRF token generation. This might be remotely exploitable in conjunction with XSS.
CVE-2020-9577Jun 26, 2020
Adobe Inc.
Magento
risk 0.00cvss —epss 0.01
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure .
CVE-2020-9581Jun 26, 2020
Adobe Inc.
Magento
risk 0.00cvss —epss 0.01
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
CVE-2020-9584Jun 26, 2020
Adobe Inc.
Magento
risk 0.00cvss —epss 0.01
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
CVE-2020-15015Jun 24, 2020
risk 0.00cvss —epss 0.01
The FileExplorer component in GleamTech FileUltimate 6.1.5.0 allows XSS via an SVG document.
CVE-2016-11084Jun 19, 2020
risk 0.00cvss —epss 0.00
An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF.
CVE-2016-11083Jun 19, 2020
risk 0.00cvss —epss 0.01
An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
CVE-2016-11082Jun 19, 2020
risk 0.00cvss —epss 0.01
An issue was discovered in Mattermost Server before 2.2.0. It allows XSS via a crafted link.
CVE-2016-11079Jun 19, 2020
risk 0.00cvss —epss 0.01
An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a redirect URL.