Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-59756 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59755 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59754 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59753 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59752 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59751 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59750 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59749 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59748 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59747 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-59746 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 6.1 -2025-10-02
CVE-2025-40992 Stored XSS in Creativeitem Sociopro — Sociopro 5.4AIMediumAI2025-10-02
CVE-2025-40991 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRM 6.1 -2025-10-02
CVE-2025-40990 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRM 6.1 -2025-10-02
CVE-2025-40989 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRM 6.1 -2025-10-02
CVE-2025-40646 Multiple vulnerabilities in Energy CRM by Status Tracker — Energy CRM 7.5AIHighAI2025-10-02
CVE-2025-34182 Deciso OPNsense < 25.7.4 /interfaces_ppps_edit.php ptpid Stored XSS — OPNsense 5.4AIMediumAI2025-10-01
CVE-2025-20357 Cisco CyberVision Center Reports Stored Cross-Site Scripting Vulnerability — Cisco Cyber Vision 5.4 Medium2025-10-01
CVE-2025-20361 Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability — Cisco Unified Communications Manager 4.8 Medium2025-10-01
CVE-2025-20356 Cisco CyberVision Center Sensor Explorer Stored Cross-Site Scripting Vulnerability — Cisco Cyber Vision 5.4 Medium2025-10-01
CVE-2025-20368 Stored Cross-Site Scripting (XSS) through missing field warning messages in Saved Search and Job Inspector on Splunk Enterprise — Splunk Enterprise 5.7 Medium2025-10-01
CVE-2025-20367 Reflected Cross-site Scripting (XSS) in '/app/search/table' endpoint through the 'dataset.command' parameter on Splunk Enterprise — Splunk Enterprise 5.7 Medium2025-10-01
CVE-2025-40648 Stored Cross-Site Scripting (XSS) vulnerability in Issabel products — Issabel 5.4AIMediumAI2025-10-01
CVE-2025-40647 Stored Cross-Site Scripting (XSS) vulnerability in Issabel products — Issabel 5.4AIMediumAI2025-10-01
CVE-2025-9075 ZoloBlocks – Gutenberg Block Editor Plugin with Advanced Blocks, Dynamic Content, Templates & Patterns <= 2.3.10 - Authenticated (Contributor+) Stored Cross-Site Scripting — ZoloBlocks – Gutenberg Block Editor Plugin with Advanced Blocks, Dynamic Content, Templates & Patterns 6.4 Medium2025-10-01
CVE-2025-43826 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 6.1AIMediumAI2025-09-30
CVE-2025-36132 IBM Planning Analytics Local cross-site scripting — Planning Analytics Local 5.4 Medium2025-09-30
CVE-2025-54476 Joomla! Core - [20250901] Inadequate content filtering within the checkAttribute filter code — Joomla! CMS 6.1AIMediumAI2025-09-30
CVE-2025-8116 Reflected XSS in PAD CMS — PAD CMS 6.1AIMediumAI2025-09-30
CVE-2025-6941 LatePoint <= 5.1.94 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — LatePoint – Calendar Booking Plugin for Appointments and Events 6.4 Medium2025-09-30

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.