Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-9438 1000projects Online Project Report Submission and Evaluation System add_student.php cross site scripting — Online Project Report Submission and Evaluation System 4.3 Medium2025-08-26
CVE-2025-9434 1000projects Online Project Report Submission and Evaluation System edit_title.php cross site scripting — Online Project Report Submission and Evaluation System 4.3 Medium2025-08-26
CVE-2025-9433 mtons mblog Admin Panel list cross site scripting — mblog 4.3 Medium2025-08-26
CVE-2025-9432 mtons mblog Admin Panel list cross site scripting — mblog 4.3 Medium2025-08-26
CVE-2025-9431 mtons mblog search cross site scripting — mblog 4.3 Medium2025-08-26
CVE-2025-9430 mtons mblog update cross site scripting — mblog 2.4 Low2025-08-26
CVE-2025-9429 mtons mblog Post submit cross site scripting — mblog 3.5 Low2025-08-25
CVE-2025-9422 oitcode samarium Team Image team cross site scripting — samarium 2.4 Low2025-08-25
CVE-2025-9416 oitcode samarium Pages Image webpage cross site scripting — samarium 2.4 Low2025-08-25
CVE-2025-3478 OpenText Enterprise Security Manager Stored XSS — OpenText Enterprise Security Manager 5.4AIMediumAI2025-08-25
CVE-2025-9407 mtons mblog profile cross site scripting — mblog 3.5 Low2025-08-25
CVE-2025-54300 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla — Quantum Mamanger component for Joomla 6.1AIMediumAI2025-08-25
CVE-2025-54301 Extension - norrnext.com - Stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla — Quantum Mamanger component for Joomla 6.1AIMediumAI2025-08-25
CVE-2025-9404 Scada-LTS Folder pointHierarchySLTS cross site scripting — Scada-LTS 2.4 Low2025-08-25
CVE-2025-9388 Scada-LTS watch_list.shtm cross site scripting — Scada-LTS 3.5 Low2025-08-24
CVE-2025-8208 Spexo Addons for Elementor <= 1.0.23 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Widget — Spexo Addons for Elementor – Elementor Widgets, Mega Menu, Popup Builder, Template Kits and Starter Templates for Elementor 6.4 Medium2025-08-24
CVE-2025-5352 Environment Variable XSS in Analytics Component in lunary-ai/lunary — lunary-ai/lunary 5.4 -2025-08-23
CVE-2025-43765 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 6.1AIMediumAI2025-08-23
CVE-2025-7957 ShortcodeHub <= 1.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via author_link_target Parameter — ShortcodeHub – MultiPurpose Shortcode Builder 6.4 Medium2025-08-23
CVE-2025-8062 WS Theme Addons <= 2.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via ws_weather Shortcode — WS Theme Addons 6.4 Medium2025-08-23
CVE-2025-9131 Ogulo – 360° Tour <= 1.0.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via slug Parameter — Ogulo – 360° Tour 6.4 Medium2025-08-23
CVE-2025-43769 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 5.4AIMediumAI2025-08-23
CVE-2025-43770 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 6.1AIMediumAI2025-08-23
CVE-2025-43761 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 6.1AIMediumAI2025-08-22
CVE-2025-43760 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 5.4AIMediumAI2025-08-22
CVE-2025-36042 IBM QRadar SIEM cross-site scripting — QRadar SIEM 5.4 Medium2025-08-22
CVE-2025-57891 WordPress Recurring PayPal Donations Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability — Recurring PayPal Donations 5.9 Medium2025-08-22
CVE-2025-57890 WordPress Sessions Plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability — Sessions 5.9 Medium2025-08-22
CVE-2025-57887 WordPress Jobmonster Theme <= 4.8.0 - Cross Site Scripting (XSS) Vulnerability — Jobmonster 6.5 Medium2025-08-22
CVE-2025-43753 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 5.4AIMediumAI2025-08-21

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.