漏洞分类 - 跨站脚本 - XSS - 知道创宇 Seebug 漏洞平台

漏洞分类 — 跨站脚本

英文名字: XSS

CVE ID：: 79

漏洞详情：: 跨站脚本，即Cross Site Script (通常简写为XSS)是指攻击者利用网站程序对用户输入过滤不足，输入可以显示在页面上对其他用户造成影响的HTML代码，从而盗取用户资料、利用用户身份进行某种动作或者对访问者进行病毒侵害的一种攻击方式。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-99728	2023-07-21		Zimbra XSS跨站脚本漏洞（CVE-2023-34192）		4079 \| 0
SSV-99644	2023-02-04		phpstudy 小皮面板运维系统XSS漏洞		4862 \| 0
SSV-99585	2022-09-22		Cobalt Strike 存储型xss漏洞（CVE-2022-39197）		4719 \| 0
SSV-99530	2022-06-22		Wordpress 存储型XSS漏洞（CVE-2022-21662）		7214 \| 2
SSV-99469	2022-03-02		Zimbra存储型XSS漏洞(CVE-2022-24682)		2788 \| 0
SSV-99421	2021-12-27		IP-Board 多处存储型XSS漏洞（CVE-2021-39249 CVE-2021-39250）		2862 \| 0
SSV-99279	2021-06-23		IceWarp 反射型XSS (CVE-2020-8512)漏洞		5592 \| 0
SSV-99273	2021-06-14		Joomla 存储型XSS漏洞(CVE-2021-26032)		7247 \| 0
SSV-98422	2020-10-23		GE Reason S20 Ethernet Switch XSS(CVE-2020-16242 CVE-2020-16246)		9307 \| 0
SSV-98319	2020-07-28		Roundcube webmail 存储型XSS漏洞（CVE-2020-15562）		13416 \| 0
SSV-98281	2020-07-01		Centreon 20.04 后台反射性XSS漏洞		13157 \| 0
SSV-98274	2020-06-24		weiphp5.0 Material.php未授权访问与存储型XSS漏洞		12327 \| 0
SSV-98272	2020-06-24		weiphp5.0 Award.php未授权访问与存储型XSS漏洞		11854 \| 0
SSV-98271	2020-06-24		weiphp5.0 Games.php未授权访问与存储型XSS漏洞		12004 \| 0
SSV-98270	2020-06-24		weiphp5.0 WeiSite.php未授权访问与存储型XSS漏洞		11860 \| 0
SSV-98269	2020-06-24		weiphp5.0 Category.php未授权访问与存储型XSS漏洞		11846 \| 0
SSV-98268	2020-06-24		weiphp5.0 Cms.php未授权访问与存储型XSS漏洞		11998 \| 0
SSV-98267	2020-06-24		weiphp5.0官方插件微考试/index.php/exam/exam/add页面未授权访问及存储型xss漏洞		11617 \| 0
SSV-98266	2020-06-24		weiphp5.0官方插件微投票 Vote.php未授权访问及存储型xss漏洞		11572 \| 0
SSV-98265	2020-06-24		weiphp5.0官方插件微考试Question.php页面未授权访问及存储型xss漏洞		11362 \| 0
SSV-98264	2020-06-24		weiphp5.0官方插件微预约Reserve.php未授权访问及存储型xss漏洞		11567 \| 0
SSV-98254	2020-06-18		weiphp存储性XSS漏洞		11506 \| 0
SSV-98250	2020-06-17		weiphp5.0 AuthGroup.php未授权访问与存储型XSS漏洞		11385 \| 0
SSV-98247	2020-06-16		Wordpress IMPress for IDX Broker 低权限xss漏洞		14177 \| 0
SSV-98174	2020-03-09		Ericsson Multiple Stored & Reflected XSS		9926 \| 0
SSV-98173	2020-03-09		Xirrus WiFi - XSS - (CVE-2020-9022)		9922 \| 0
SSV-98171	2020-03-09		Multiple Reflected XSS in UHP routers (CVE-2020-7235 - CVE-2020-7236)		10484 \| 0
SSV-98169	2020-03-09		Stored Cross-Site Scripting (Authenticated) in SYROTECH SY-GOPON-1000-2WONU V2.1.7_X116 devices		10107 \| 0
SSV-98168	2020-03-09		Symmetricom SyncServer S100/S200/S250/S300/S350 - Stored XSS - Not authenticated - (CVE-2020-9028)		9948 \| 0
SSV-98165	2020-03-09		Steelcase Sala por favor		9764 \| 0
SSV-98164	2020-03-09		Sonoff TH Module XSS		9379 \| 0
SSV-98163	2020-03-09		Smc Networks Stored Cross Site Scripting (Authenticated) in SMC D3G0804W Router (CVE-‪2020-7249)		10578 \| 0
SSV-98161	2020-03-09		Climatix, BACnet Communication Card, Multibles #XSS - (CVE-2020-7574 & CVE-2020-7575 )		9818 \| 0
SSV-98157	2020-03-09		lifesize devices allow XSS via the interface/interface.php brand parameter - CVE-2018-17981		9310 \| 0
SSV-98154	2020-03-09		Iteris Vantage Velocity Field Unit - Multiple Stored XSS vulnerabilities - (CVE-2020-9025)		10116 \| 0
SSV-98147	2020-03-09		Eaton Authenticated Stored Cross Site Scripting (CVE-2020-7915)		9186 \| 0
SSV-98023	2019-07-15		pfsense 2.4.4-RELEASE-p3 反射性xss		5633 \| 0
SSV-97997	2019-06-03		WebPort 1.19.1 储存型XSS#3		1593 \| 0
SSV-97996	2019-06-03		WebPort 1.19.1 储存型XSS#2		2695 \| 0
SSV-97994	2019-06-03		WebPort 1.19.1 储存性XSS		2666 \| 0
SSV-97973	2019-05-30		Tpshop 后台User.php 反射性xss		1273 \| 0
SSV-97953	2019-05-14		Jeesns Question Store XSS		2386 \| 0
SSV-97952	2019-05-14		Jeesns Article‘s Comments Store XSS		2062 \| 0
SSV-97951	2019-05-14		Jeesns Article Store XSS		2082 \| 0
SSV-97950	2019-05-14		Jeesns Weibo Topic Reflection XSS		2087 \| 0
SSV-97949	2019-05-14		Jeesns Weibo Comments store XSS		2123 \| 0
SSV-97948	2019-05-14		Jeesns Weibo store XSS		2220 \| 0
SSV-97947	2019-05-14		Jeesns Album Store XSS		2323 \| 0
SSV-97946	2019-05-14		Jeesns Message Store XSS		2199 \| 0
SSV-97945	2019-05-14		Jeesns Group Posts Store XSS		2356 \| 0
SSV-97944	2019-05-14		Jeesns Group‘s Comments Store XSS		2057 \| 0
SSV-97943	2019-05-14		Jeesns Group Store XSS		2385 \| 0
SSV-97942	2019-05-14		Jeesns Answer Store XSS		2080 \| 0
SSV-97941	2019-05-14		Jeesns Administrator login Store XSS		2187 \| 0
SSV-97940	2019-05-14		Jeesns Error Reminder Reflecting XSS		2074 \| 0
SSV-97939	2019-05-14		Jeesns newVersion Reflection XSS		2168 \| 0
SSV-97931	2019-05-05		GetSimpleCMS反射性xss#2		2579 \| 0
SSV-97930	2019-05-05		GetSimpleCMS反射性xss		3014 \| 0
SSV-97929	2019-05-05		GetSimpleCMS限制反射性XSS		2760 \| 0
SSV-97928	2019-05-05		GetSimpleCMS任意URL跳转		2420 \| 0
SSV-97926	2019-04-29		gnuboard5 反射性xss		3072 \| 0
SSV-97879	2019-03-28		Jfinal cms profile stored XSS		2165 \| 0
SSV-97878	2019-03-28		Jfinal cms article stored XSS		1085 \| 0
SSV-97877	2019-03-28		Jfinal cms regist stored XSS		1062 \| 0
SSV-97876	2019-03-28		Jfinal cms comment stored XSS		897 \| 0
SSV-97875	2019-03-28		Jfinal cms advice stored XSS		997 \| 0
SSV-97869	2019-03-25		Ecshop 3.x&4.0版本反射型XSS		5791 \| 1
SSV-97865	2019-03-18		phpshe 1.7版本反射型XSS漏洞		5668 \| 0
SSV-97852	2019-03-12		wordpress ari-adminer 储存型XSS		5695 \| 0
SSV-97849	2019-03-07		OFCMS background role management storage type XSS		1110 \| 0
SSV-97848	2019-03-07		OFCMS background website basic settings storage type XSS		1114 \| 0
SSV-97847	2019-03-07		OFCMS background site management storage type XSS		1032 \| 0
SSV-97846	2019-03-07		OFCMS background site announcement storage type XSS		1017 \| 0
SSV-97845	2019-03-07		OFCMS background column management storage type XSS		1010 \| 0
SSV-97844	2019-03-07		OFCMS background Advertising management storage type XSS		965 \| 0
SSV-97843	2019-03-07		OFCMS background theme management storage type XSS		1101 \| 0
SSV-97842	2019-03-07		OFCMS background Friendly link management storage type XSS		971 \| 0
SSV-97841	2019-03-07		OFCMS background single page management storage type XSS		1078 \| 0
SSV-97840	2019-03-07		OFCMS background form management storage type XSS		1111 \| 0
SSV-97813	2019-02-18		Vanilla Forums < 2.5 Stored XSS in any message		4295 \| 0
SSV-97812	2019-02-18		Invision Power Board 3.3.1 - 3.4.8 stored XSS in any message		6989 \| 0
SSV-97776	2019-01-21		Cisco ISE Unauthenticated XSS to Privileged RCE		5400 \| 0
SSV-97773	2019-01-15		Metinfo 6.x存储型XSS (CVE-2018-20486)		5534 \| 0
SSV-97768	2019-01-13		MetInfo6 后台存储型XSS		4761 \| 0
SSV-97766	2019-01-07		zoneminder反射性xss2		8730 \| 0
SSV-97764	2019-01-07		zoneminder反射性xss		8231 \| 1
SSV-97750	2018-12-26		Stored XSS on WordPress.org		4704 \| 0
SSV-97736	2018-12-24		Cisco DPC3928SL XSS (CVE-2018-20379)		4397 \| 0
SSV-97729	2018-12-17		ESPCMS 最新版p8 存储型XSS漏洞		4793 \| 0
SSV-97706	2018-12-10		S-CMS建站系统存储型XSS		4480 \| 0
SSV-97698	2018-12-03		seacms v6.64一处存储型xss		4284 \| 0
SSV-97696	2018-12-03		metinfo最新版一处任意响应头设置漏洞结合反射型xss可bypass chrome		4631 \| 0
SSV-97695	2018-12-01		Metinfo 反射型xss可打管理员cookie		4729 \| 0
SSV-97678	2018-11-20		ESPCMS P8.18101601n 前台XSS		4511 \| 0
SSV-97714	2018-11-10		Nagios XI <=5.5.7 Reflect XSS#2		8096 \| 0
SSV-97713	2018-11-10		Nagios XI <=5.5.7 Reflect XSS#1		8101 \| 0
SSV-97539	2018-09-19		TradingView XSS漏洞		4403 \| 0
SSV-97495	2018-08-22		otcms友情链接储存xss		4236 \| 0
SSV-97438	2018-07-30		Sngine v2.5.3 通用型反射XSS漏洞		4413 \| 0
SSV-97380	2018-06-29		KYOCERA Net Admin 3.4 Multiple XSS Vulnerabilities		3561 \| 0