CWE-79 CVEs and Security Vulnerabilities

Export limit exceeded: 348012 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Export limit exceeded: 45703 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (45703 CVEs found)

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2021-3994	1 Django-helpdesk Project	1 Django-helpdesk	2024-11-21	9.6 Critical
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3985	1 Kimai	1 Kimai2	2024-11-21	9.0 Critical
kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3983	1 Kimai2 Project	1 Kimai2	2024-11-21	6.1 Medium
kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3977	1 Invoiceninja	1 Invoice Ninja	2024-11-21	5.4 Medium
invoiceninja is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3961	1 Snipeitapp	1 Snipe-it	2024-11-21	5.4 Medium
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3950	1 Django-helpdesk Project	1 Django-helpdesk	2024-11-21	5.4 Medium
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3945	1 Django-helpdesk Project	1 Django-helpdesk	2024-11-21	6.1 Medium
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3938	1 Snipeitapp	1 Snipe-it	2024-11-21	5.4 Medium
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3920	1 Getgrav	1 Grav-plugin-admin	2024-11-21	5.4 Medium
grav-plugin-admin is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3914	1 Redhat	4 Build Of Quarkus, Openshift Application Runtimes, Quarkus and 1 more	2024-11-21	6.1 Medium
It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.
CVE-2021-3904	1 Getgrav	1 Grav	2024-11-21	5.4 Medium
grav is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3879	1 Snipeitapp	1 Snipe-it	2024-11-21	5.4 Medium
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3866	1 Zulip	1 Zulip	2024-11-21	5.4 Medium
Cross-site Scripting (XSS) - Stored in GitHub repository zulip/zulip more than and including 44f935695d452cc3fb16845a0c6af710438b153d and prior to 3eb2791c3e9695f7d37ffe84e0c2184fae665cb6.
CVE-2021-3863	1 Snipeitapp	1 Snipe-it	2024-11-21	6.1 Medium
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3862	1 Icecoder	1 Icecoder	2024-11-21	4.8 Medium
icecoder is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3857	1 Chaskiq	1 Chaskiq	2024-11-21	5.4 Medium
chaskiq is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3853	1 Chaskiq	1 Chaskiq	2024-11-21	6.1 Medium
chaskiq is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3834	1 Artica	1 Integria Ims	2024-11-21	5.4 Medium
Integria IMS in its 5.0.92 version does not filter correctly some fields related to the login.php file. An attacker could exploit this vulnerability in order to perform a cross-site scripting attack (XSS).
CVE-2021-3831	1 Gnuboard	1 Gnuboard5	2024-11-21	6.1 Medium
gnuboard5 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3830	1 Btcpayserver	1 Btcpay Server	2024-11-21	5.4 Medium
btcpayserver is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

« first previous Page 1784 of 2286. next last »