Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-49956 WordPress Fade Slider plugin <= 2.5 - Cross Site Scripting (XSS) vulnerability — Fade Slider 7.1 High2025-10-22
CVE-2025-49953 WordPress ShareBang, Ultimate Social Share Buttons for WordPress Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability — ShareBang, Ultimate Social Share Buttons for WordPress 7.1 High2025-10-22
CVE-2025-49957 WordPress Email Attachment by Order Status & Products Plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability — Email Attachment by Order Status & Products 7.1 High2025-10-22
CVE-2025-49954 WordPress WP-Click-Tracker Plugin <= 0.7.3 - Cross Site Scripting (XSS) Vulnerability — WP-Click-Tracker 7.1 High2025-10-22
CVE-2025-49955 WordPress WP Smart Flexslider Plugin <= 2.5 - Cross Site Scripting (XSS) Vulnerability — WP Smart Flexslider 7.1 High2025-10-22
CVE-2025-49951 WordPress gAppointments Plugin <= 1.14.1 - Cross Site Scripting (XSS) Vulnerability — gAppointments 7.1 High2025-10-22
CVE-2025-49946 WordPress Auto Login After Registration plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability — Auto Login After Registration 7.1 High2025-10-22
CVE-2025-49947 WordPress WooCommerce Registration Fields Plugin - Custom Signup Fields plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability — WooCommerce Registration Fields Plugin - Custom Signup Fields 7.1 High2025-10-22
CVE-2025-49948 WordPress WP Super Edit plugin <= 2.5.4 - Cross Site Scripting (XSS) Vulnerability — WP Super Edit 7.1 High2025-10-22
CVE-2025-49945 WordPress Shortcode Generator plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability — Shortcode Generator 7.1 High2025-10-22
CVE-2025-49938 WordPress JetEngine plugin <= 3.7.3 - Cross Site Scripting (XSS) vulnerability — JetEngine 6.5 Medium2025-10-22
CVE-2025-49940 WordPress Fusion Builder plugin <= 3.13.2 - Cross Site Scripting (XSS) vulnerability — Fusion Builder 6.5 Medium2025-10-22
CVE-2025-49939 WordPress JetElements For Elementor plugin <= 2.7.8 - Cross Site Scripting (XSS) vulnerability — JetElements For Elementor 6.5 Medium2025-10-22
CVE-2025-49944 WordPress WPCode Content Ratio plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability — WPCode Content Ratio 7.1 High2025-10-22
CVE-2025-49933 WordPress JetBlog plugin <= 2.4.4 - Cross Site Scripting (XSS) vulnerability — JetBlog 6.5 Medium2025-10-22
CVE-2025-49936 WordPress WoodMart theme < 8.3.2 - Cross Site Scripting (XSS) vulnerability — WoodMart 6.5 Medium2025-10-22
CVE-2025-49934 WordPress JetBlocks For Elementor plugin <= 1.3.18 - Cross Site Scripting (XSS) vulnerability — JetBlocks For Elementor 6.5 Medium2025-10-22
CVE-2025-49930 WordPress JetSearch plugin <= 3.5.10 - Cross Site Scripting (XSS) vulnerability — JetSearch 7.1 High2025-10-22
CVE-2025-49929 WordPress Ultimate Blocks plugin <= 3.3.6 - Cross Site Scripting (XSS) vulnerability — Ultimate Blocks 6.5 Medium2025-10-22
CVE-2025-49932 WordPress JetBlog plugin <= 2.4.4.1 - Cross Site Scripting (XSS) vulnerability — JetBlog 6.5 Medium2025-10-22
CVE-2025-49928 WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site Scripting (XSS) vulnerability — JetWooBuilder 6.5 Medium2025-10-22
CVE-2025-49923 WordPress Seriously Simple Podcasting plugin <= 3.11.1 - Cross Site Scripting (XSS) vulnerability — Seriously Simple Podcasting 5.9 Medium2025-10-22
CVE-2025-49927 WordPress JetWooBuilder plugin <= 2.1.20.1 - Cross Site Scripting (XSS) vulnerability — JetWooBuilder 6.5 Medium2025-10-22
CVE-2025-49912 WordPress Email Subscription Popup plugin <= 1.2.26 - Cross Site Scripting (XSS) vulnerability — Email Subscription Popup 5.9 Medium2025-10-22
CVE-2025-49908 WordPress WPC Countdown Timer for WooCommerce plugin <= 3.1.4 - Cross Site Scripting (XSS) vulnerability — WPC Countdown Timer for WooCommerce 6.5 Medium2025-10-22
CVE-2025-49911 WordPress WooCommerce Vehicle Parts Finder plugin <= 3.7 - Cross Site Scripting (XSS) vulnerability — WooCommerce Vehicle Parts Finder 7.1 High2025-10-22
CVE-2025-48097 WordPress WSAnalytics plugin <= 1.1.2 - Reflected Cross Site Scripting (XSS) vulnerability — WSAnalytics 7.1 High2025-10-22
CVE-2025-48098 WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site Scripting (XSS) vulnerability — Survey Maker 7.1 High2025-10-22
CVE-2025-48095 WordPress Survey Maker plugin <= 5.1.8.8 - Cross Site Scripting (XSS) vulnerability — Survey Maker 5.9 Medium2025-10-22
CVE-2025-48093 WordPress Password only login plugin <= 0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Password only login 7.1 High2025-10-22

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.