Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-57947 WordPress Photo Gallery by Ays Plugin <= 6.3.8 - Cross Site Scripting (XSS) Vulnerability — Photo Gallery by Ays 6.5 Medium2025-09-22
CVE-2025-57948 WordPress Directory Pro Plugin <= 2.5.5 - Cross Site Scripting (XSS) Vulnerability — Directory Pro 6.5 Medium2025-09-22
CVE-2025-57950 WordPress Plugin Security Scanner Plugin <= 2.0.2 - Cross Site Scripting (XSS) Vulnerability — Plugin Security Scanner 5.9 Medium2025-09-22
CVE-2025-57952 WordPress Maps for WP Plugin <= 1.2.5 - Cross Site Scripting (XSS) Vulnerability — Maps for WP 5.9 Medium2025-09-22
CVE-2025-57951 WordPress SiteNarrator Text-to-Speech Widget Plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability — SiteNarrator Text-to-Speech Widget 5.9 Medium2025-09-22
CVE-2025-57953 WordPress Open User Map Plugin <= 1.4.14 - Cross Site Scripting (XSS) Vulnerability — Open User Map 6.5 Medium2025-09-22
CVE-2025-57954 WordPress Poll Maker Plugin <= 6.0.2 - Cross Site Scripting (XSS) Vulnerability — Poll Maker 6.5 Medium2025-09-22
CVE-2025-57956 WordPress WooMS Plugin <= 9.12 - Cross Site Scripting (XSS) Vulnerability — WooMS 5.9 Medium2025-09-22
CVE-2025-57959 WordPress Slightly troublesome permalink Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability — Slightly troublesome permalink 5.9 Medium2025-09-22
CVE-2025-57962 WordPress VikRestaurants Table Reservations and Take-Away plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability — VikRestaurants 5.9 Medium2025-09-22
CVE-2025-57964 WordPress Library Bookshelves Plugin <= 5.11 - Cross Site Scripting (XSS) Vulnerability — Library Bookshelves 6.5 Medium2025-09-22
CVE-2025-57963 WordPress Zoho Billing Plugin <= 4.1 - Cross Site Scripting (XSS) Vulnerability — Zoho Billing 6.5 Medium2025-09-22
CVE-2025-57965 WordPress WP Proposals Plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability — WP Proposals 6.5 Medium2025-09-22
CVE-2025-57967 WordPress WPB Quick View for WooCommerce plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability — WPB Quick View for WooCommerce 6.5 Medium2025-09-22
CVE-2025-57966 WordPress Gallery Lightbox plugin <= 1.0.0.41 - Cross Site Scripting (XSS) vulnerability — Gallery Lightbox 6.5 Medium2025-09-22
CVE-2025-57968 WordPress VikRestaurants Table Reservations and Take-Away plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability — VikRestaurants 7.1 High2025-09-22
CVE-2025-57974 WordPress TZ PlusGallery Plugin <= 1.5.5 - Cross Site Scripting (XSS) Vulnerability — TZ PlusGallery 5.9 Medium2025-09-22
CVE-2025-57973 WordPress WP-Members Plugin <= 3.5.4.2 - Cross Site Scripting (XSS) Vulnerability — WP-Members 5.5 Medium2025-09-22
CVE-2025-57980 WordPress Safety Exit Plugin <= 1.8.0 - Cross Site Scripting (XSS) Vulnerability — Safety Exit 5.9 Medium2025-09-22
CVE-2025-57979 WordPress AuthorSure Plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability — AuthorSure 5.9 Medium2025-09-22
CVE-2025-57981 WordPress WP Social Widget Plugin <= 2.3.1 - Cross Site Scripting (XSS) Vulnerability — WP Social Widget 6.5 Medium2025-09-22
CVE-2025-57982 WordPress Advance Portfolio Grid plugin <= 1.07.6 - Cross Site Scripting (XSS) vulnerability — Advance Portfolio Grid 5.9 Medium2025-09-22
CVE-2025-57986 WordPress WP Subtitle plugin <= 3.4.1 - Cross Site Scripting (XSS) vulnerability — WP Subtitle 6.5 Medium2025-09-22
CVE-2025-57989 WordPress WordPress Widgets Shortcode Plugin <= 1.0.3 - Cross Site Scripting (XSS) Vulnerability — WordPress Widgets Shortcode 6.5 Medium2025-09-22
CVE-2025-57988 WordPress Uncanny Toolkit for LearnDash Plugin <= 3.7.0.3 - Cross Site Scripting (XSS) Vulnerability — Uncanny Toolkit for LearnDash 6.5 Medium2025-09-22
CVE-2025-57993 WordPress Geolocation IP Detection plugin <= 5.5.0 - Cross Site Scripting (XSS) vulnerability — Geolocation IP Detection 6.5 Medium2025-09-22
CVE-2025-57996 WordPress Buckets Plugin <= 0.3.9 - Cross Site Scripting (XSS) Vulnerability — Buckets 6.5 Medium2025-09-22
CVE-2025-57998 WordPress E-namad & Shamed Logo Manager Plugin <= 2.2 - Cross Site Scripting (XSS) Vulnerability — E-namad & Shamed Logo Manager 5.9 Medium2025-09-22
CVE-2025-57999 WordPress WPKoi Templates for Elementor Plugin <= 3.4.3 - Cross Site Scripting (XSS) Vulnerability — WPKoi Templates for Elementor 6.5 Medium2025-09-22
CVE-2025-58001 WordPress Compact Archives plugin <= 4.1.0 - Cross Site Scripting (XSS) vulnerability — Compact Archives 6.5 Medium2025-09-22

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.