Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-58805 WordPress Widgetize Pages Light Plugin <= 3.0 - Cross Site Scripting (XSS) Vulnerability — Widgetize Pages Light 5.9 Medium2025-09-05
CVE-2025-58796 WordPress Elementor Element Condition Plugin <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability — Elementor Element Condition 6.5 Medium2025-09-05
CVE-2025-58793 WordPress WPB Elementor Addons plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability — WPB Elementor Addons 6.5 Medium2025-09-05
CVE-2025-58791 WordPress SEO Auto Linker Plugin <= 1.5.3 - Cross Site Scripting (XSS) Vulnerability — SEO Auto Linker 5.9 Medium2025-09-05
CVE-2025-58790 WordPress Kiwi Plugin <= 2.1.8 - Cross Site Scripting (XSS) Vulnerability — Kiwi 6.5 Medium2025-09-05
CVE-2025-58787 WordPress Themify Popup Plugin <= 1.4.2 - Cross Site Scripting (XSS) Vulnerability — Themify Popup 6.5 Medium2025-09-05
CVE-2025-58786 WordPress Ibtana – Ecommerce Product Addons plugin <= 0.4.7.6 - Cross Site Scripting (XSS) vulnerability — Ibtana – Ecommerce Product Addons 6.5 Medium2025-09-05
CVE-2025-58784 WordPress ARI Fancy Lightbox Plugin <= 1.4.0 - Cross Site Scripting (XSS) Vulnerability — ARI Fancy Lightbox 6.5 Medium2025-09-05
CVE-2025-8695 Reflected XSS in Netcad Software's NetGIS Server — NetGIS Server 5.4 Medium2025-09-05
CVE-2025-8684 Flatsome <= 3.20.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Flatsome 6.4 Medium2025-09-05
CVE-2025-55209 FreePBX UCP is Vulnerable to Stored XSS Through its User Control Panel — contactmanager 8.2AIHighAI2025-09-04
CVE-2025-58353 Promptcraft Forge Studio: Complete Sanitizer Bypass Enables XSS via Overlapping Patterns — promptcraft-forge-studio 8.2 High2025-09-04
CVE-2024-43184 IBM Jazz Foundation cross-site scripting — Jazz Foundation 6.1 Medium2025-09-04
CVE-2025-2694 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B Integrator 4.8 Medium2025-09-04
CVE-2025-41063 Reflected Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41062 Reflected Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41061 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41060 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41059 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41058 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41057 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41056 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41055 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41054 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41053 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41052 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41051 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41050 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41049 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04
CVE-2025-41048 Stored Cross-Site Scripting vulnerability in appRain CMF — appRain CMF 5.4 -2025-09-04

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.