Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-54856 Six Apart Movable Type 跨站脚本漏洞 — Movable Type (Software Edition) 5.4AIMediumAI2025-10-23
CVE-2025-62613 VDO.Ninja Reflected XSS Vulnerability in control.html — vdo.ninja 6.1AIMediumAI2025-10-22
CVE-2025-62248 Liferay Portal和Liferay DXP 安全漏洞 — Portal 6.1AIMediumAI2025-10-22
CVE-2025-62659 The CookieConsent extension does not properly use reserved data attributes, thus introducing potential XSS vectors — MediaWiki CookieConsent extension 6.1AIMediumAI2025-10-22
CVE-2025-11966 Eclipse Vert.x 安全漏洞 — Vert.x 5.4AIMediumAI2025-10-22
CVE-2025-62069 WordPress MDTF plugin <= 1.3.3.8 - Cross Site Scripting (XSS) vulnerability — MDTF 6.5 Medium2025-10-22
CVE-2025-62068 WordPress e2pdf plugin <= 1.28.09 - Cross Site Scripting (XSS) vulnerability — e2pdf 6.5 Medium2025-10-22
CVE-2025-62063 WordPress WP Travel Gutenberg Blocks plugin <= 3.9.2 - Cross Site Scripting (XSS) vulnerability — WP Travel Gutenberg Blocks 6.5 Medium2025-10-22
CVE-2025-62060 WordPress Tab Ultimate plugin <= 1.8 - Cross Site Scripting (XSS) vulnerability — Tab Ultimate 6.5 Medium2025-10-22
CVE-2025-62058 WordPress Houzez Theme - Functionality plugin < 4.2.0 - Cross Site Scripting (XSS) vulnerability — Houzez Theme - Functionality 6.5 Medium2025-10-22
CVE-2025-62042 WordPress Event post plugin <= 5.10.3 - Cross Site Scripting (XSS) vulnerability — Event post 6.5 Medium2025-10-22
CVE-2025-62024 WordPress Pie Calendar plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability — Pie Calendar 6.5 Medium2025-10-22
CVE-2025-62020 WordPress VOD Infomaniak plugin <= 1.5.11 - Cross Site Scripting (XSS) vulnerability — VOD Infomaniak 7.1 High2025-10-22
CVE-2025-60246 WordPress Simple Finance Calculator plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Simple Finance Calculator 7.1 High2025-10-22
CVE-2025-60135 WordPress WeShare Buttons Plugin <= 13.0.0 - Cross Site Scripting (XSS) Vulnerability — WeShare Buttons 5.9 Medium2025-10-22
CVE-2025-60176 WordPress WP Tesseract Plugin <= 1.0.2 - Cross Site Scripting (XSS) Vulnerability — WP Tesseract 5.9 Medium2025-10-22
CVE-2025-60131 WordPress Werk aan de Muur Plugin <= 1.5 - Cross Site Scripting (XSS) Vulnerability — Werk aan de Muur 5.9 Medium2025-10-22
CVE-2025-59593 WordPress Colibri Page Builder Plugin < 1.0.334 - Cross Site Scripting (XSS) Vulnerability — Colibri Page Builder 5.9 Medium2025-10-22
CVE-2025-59571 WordPress WorkScout-Core plugin < 1.7.06 - Cross Site Scripting (XSS) vulnerability — WorkScout-Core 7.1 High2025-10-22
CVE-2025-58971 WordPress Doctreat theme <= 1.6.7 - Cross Site Scripting (XSS) Vulnerability — Doctreat 7.1 High2025-10-22
CVE-2025-59004 WordPress WC Return products plugin <= 1.5 - Reflected Cross Site Scripting (XSS) vulnerability — WC Return products 7.1 High2025-10-22
CVE-2025-59006 WordPress Easy Woocommerce Customizer plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Easy Woocommerce Customizer 7.1 High2025-10-22
CVE-2025-58966 WordPress NEX-Forms LITE plugin < 8.2 - Cross Site Scripting (XSS) vulnerability — NEX-Forms LITE 7.1 High2025-10-22
CVE-2025-58921 WordPress WP Tactical Popup plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Tactical Popup 7.1 High2025-10-22
CVE-2025-58961 WordPress CF7 Auto Responder Addon plugin <= 2.4 - Cross Site Scripting (XSS) vulnerability — CF7 Auto Responder Addon 7.1 High2025-10-22
CVE-2025-58916 WordPress Author: Munzir plugin <= 0.9 - Reflected Cross Site Scripting (XSS) vulnerability — Author: Munzir 7.1 High2025-10-22
CVE-2025-53427 WordPress SEO Pyramid plugin <= 1.9.8 - Cross Site Scripting (XSS) vulnerability — SEO Pyramid 7.1 High2025-10-22
CVE-2025-53426 WordPress Likert Survey Master plugin <= 0.8.0.1 - Cross Site Scripting (XSS) vulnerability — Likert Survey Master 7.1 High2025-10-22
CVE-2025-53422 WordPress WhatsApp Chat for WordPress and WooCommerce plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability — WhatsApp Chat for WordPress and WooCommerce 7.1 High2025-10-22
CVE-2025-53423 WordPress Triss theme <= 2.6 - Cross Site Scripting (XSS) vulnerability — Triss 7.1 High2025-10-22

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.