Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21529

21529 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-58002 WordPress GD bbPress Tools Plugin <= 3.5.3 - Cross Site Scripting (XSS) Vulnerability — GD bbPress Tools 6.5 Medium2025-09-22
CVE-2025-58008 WordPress Participants Database Plugin <= 2.7.6.3 - Cross Site Scripting (XSS) Vulnerability — Participants Database 6.5 Medium2025-09-22
CVE-2025-58017 WordPress Ultimate Store Kit Elementor Addons plugin <= 2.8.6 - Cross Site Scripting (XSS) vulnerability — Ultimate Store Kit Elementor Addons 6.5 Medium2025-09-22
CVE-2025-58018 WordPress Mail Subscribe List Plugin <= 2.1.10 - Cross Site Scripting (XSS) Vulnerability — Mail Subscribe List 6.5 Medium2025-09-22
CVE-2025-58019 WordPress Search Atlas SEO Plugin <= 2.5.4 - Cross Site Scripting (XSS) Vulnerability — Search Atlas SEO 6.5 Medium2025-09-22
CVE-2025-58020 WordPress Theater for WordPress plugin <= 0.18.8 - Cross Site Scripting (XSS) vulnerability — Theater for WordPress 6.5 Medium2025-09-22
CVE-2025-58021 WordPress List Child Pages Shortcode Plugin <= 1.3.1 - Cross Site Scripting (XSS) Vulnerability — List Child Pages Shortcode 6.5 Medium2025-09-22
CVE-2025-58022 WordPress ShortCode Plugin <= 0.8.1 - Cross Site Scripting (XSS) Vulnerability — ShortCode 6.5 Medium2025-09-22
CVE-2025-58023 WordPress Genealogical Tree plugin <= 2.2.7 - Cross Site Scripting (XSS) vulnerability — Genealogical Tree 6.5 Medium2025-09-22
CVE-2025-58025 WordPress Master Slider Plugin <= 3.11.0 - Cross Site Scripting (XSS) Vulnerability — Master Slider 6.5 Medium2025-09-22
CVE-2025-58026 WordPress Termageddon: Cookie Consent & Privacy Compliance Plugin <= 1.8.1 - Cross Site Scripting (XSS) Vulnerability — Termageddon: Cookie Consent & Privacy Compliance 6.5 Medium2025-09-22
CVE-2025-58028 WordPress Designil PDPA Thailand plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability — Designil PDPA Thailand 6.5 Medium2025-09-22
CVE-2025-58027 WordPress NGG Smart Image Search Plugin <= 3.4.3 - Cross Site Scripting (XSS) Vulnerability — NGG Smart Image Search 6.5 Medium2025-09-22
CVE-2025-58030 WordPress Page-list Plugin <= 5.8 - Cross Site Scripting (XSS) Vulnerability — Page-list 6.5 Medium2025-09-22
CVE-2025-58031 WordPress Nextend Facebook Connect Plugin <= 3.1.19 - Cross Site Scripting (XSS) Vulnerability — Nextend Facebook Connect 6.5 Medium2025-09-22
CVE-2025-58033 WordPress Draft Plugin <= 3.0.9 - Cross Site Scripting (XSS) Vulnerability — Draft 5.9 Medium2025-09-22
CVE-2025-58220 WordPress Card Elements for WPBakery Plugin <= 1.0.8 - Cross Site Scripting (XSS) Vulnerability — Card Elements for WPBakery 6.5 Medium2025-09-22
CVE-2025-58223 WordPress VoucherPress Plugin <= 1.5.7 - Cross Site Scripting (XSS) Vulnerability — VoucherPress 5.9 Medium2025-09-22
CVE-2025-58227 WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability — Podlove Subscribe button 6.5 Medium2025-09-22
CVE-2025-58228 WordPress Quick View for WooCommerce Plugin <= 2.2.16 - Cross Site Scripting (XSS) Vulnerability — Quick View for WooCommerce 6.5 Medium2025-09-22
CVE-2025-58230 WordPress ZoloBlocks plugin <= 2.3.12 - Cross Site Scripting (XSS) vulnerability — ZoloBlocks 6.5 Medium2025-09-22
CVE-2025-58229 WordPress Sitekit Plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability — Sitekit 6.5 Medium2025-09-22
CVE-2025-58231 WordPress Bitly plugin <= 2.8.0 - Cross Site Scripting (XSS) vulnerability — Bitly 6.5 Medium2025-09-22
CVE-2025-58232 WordPress Image Editor by Pixo Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability — Image Editor by Pixo 6.5 Medium2025-09-22
CVE-2025-58234 WordPress JS Job Manager Plugin <= 2.0.2 - Cross Site Scripting (XSS) Vulnerability — JS Job Manager 6.5 Medium2025-09-22
CVE-2025-58233 WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability — SQL Chart Builder 6.5 Medium2025-09-22
CVE-2025-58235 WordPress Front End Users plugin <= 3.2.35 - Cross Site Scripting (XSS) vulnerability — Front End Users 6.5 Medium2025-09-22
CVE-2025-58237 WordPress LC Wizard plugin <= 2.2.4 - Cross Site Scripting (XSS) vulnerability — LC Wizard 6.5 Medium2025-09-22
CVE-2025-58238 WordPress PilotPress Plugin <= 2.0.36 - Cross Site Scripting (XSS) Vulnerability — PilotPress 6.5 Medium2025-09-22
CVE-2025-58239 WordPress WP Category Dropdown Plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability — WP Category Dropdown 6.5 Medium2025-09-22

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21529 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.