Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-48297 WordPress Simple Link Directory < 14.8.1 - Cross Site Scripting (XSS) Vulnerability — Simple Link Directory 7.1 High2025-08-20
CVE-2025-48296 WordPress UpStore <= 1.7.0 - Cross Site Scripting (XSS) Vulnerability — UpStore 7.1 High2025-08-20
CVE-2025-53195 WordPress JetEngine plugin <= 3.7.0 - Cross Site Scripting (XSS) Vulnerability — JetEngine 6.5 Medium2025-08-20
CVE-2025-53201 WordPress Jobmonster theme <= 4.7.8 - Cross Site Scripting (XSS) vulnerability — Jobmonster 7.1 High2025-08-20
CVE-2025-53205 WordPress Radio Player Shoutcast & Icecast <= 4.4.7 - Cross Site Scripting (XSS) Vulnerability — Radio Player Shoutcast & Icecast 7.1 High2025-08-20
CVE-2025-53212 WordPress Revolution Video Player With Bottom Playlist <= 2.9.2 - Cross Site Scripting (XSS) Vulnerability — Revolution Video Player With Bottom Playlist 7.1 High2025-08-20
CVE-2025-53226 WordPress Comments Capcha Box Plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability — Comments Capcha Box 7.1 High2025-08-20
CVE-2025-53559 WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability — Universal Video Player - Addon for WPBakery Page Builder 7.1 High2025-08-20
CVE-2025-53319 WordPress Raptive Ads Plugin <= 3.8.0 - Cross Site Scripting (XSS) Vulnerability — Raptive Ads 7.1 High2025-08-20
CVE-2025-53563 WordPress Youtube Vimeo Video Player and Slider <= 3.8 - Cross Site Scripting (XSS) Vulnerability — Youtube Vimeo Video Player and Slider 7.1 High2025-08-20
CVE-2025-53562 WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability — Universal Video Player - Addon for WPBakery Page Builder 7.1 High2025-08-20
CVE-2025-53564 WordPress HTML5 Radio Player - WPBakery Page Builder Addon <= 2.5 - Cross Site Scripting (XSS) Vulnerability — HTML5 Radio Player - WPBakery Page Builder Addon 7.1 High2025-08-20
CVE-2025-54027 WordPress Support Board <= 3.8.0 - Cross Site Scripting (XSS) Vulnerability — Support Board 7.1 High2025-08-20
CVE-2025-54032 WordPress Real Estate Manager Pro Plugin <= 12.7.3 - Cross Site Scripting (XSS) Vulnerability — Real Estate Manager Pro 7.1 High2025-08-20
CVE-2025-54044 WordPress Elite Video Player <= 10.0.5 - Cross Site Scripting (XSS) Vulnerability — Elite Video Player 7.1 High2025-08-20
CVE-2025-54046 WordPress Cost Calculator Plugin <= 7.4 - Cross Site Scripting (XSS) Vulnerability — Cost Calculator 6.5 Medium2025-08-20
CVE-2025-54056 WordPress Responsive HTML5 Audio Player PRO With Playlist <= 3.5.8 - Cross Site Scripting (XSS) Vulnerability — Responsive HTML5 Audio Player PRO With Playlist 7.1 High2025-08-20
CVE-2025-54055 WordPress Druco <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability — Druco 7.1 High2025-08-20
CVE-2025-54670 WordPress oik Plugin <= 4.15.2 - Cross Site Scripting (XSS) Vulnerability — oik 7.1 High2025-08-20
CVE-2025-9225 Cross-site scripting (XSS) in MiR robots and MiR fleet — MiR Robots 5.5 Medium2025-08-20
CVE-2025-8618 WPC Smart Quick View for WooCommerce <= 4.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via woosq_btn Shortcode — WPC Smart Quick View for WooCommerce 6.4 Medium2025-08-20
CVE-2024-12223 Stored Cross-site Scripting (XSS) in Nutanix Prism Central — Prism Central 5.4AIMediumAI2025-08-20
CVE-2025-9171 SolidInvoice Clients clients cross site scripting — SolidInvoice 3.5 Low2025-08-19
CVE-2025-9170 SolidInvoice Tax Rates rates cross site scripting — SolidInvoice 3.5 Low2025-08-19
CVE-2025-9169 SolidInvoice Quote quotes cross site scripting — SolidInvoice 3.5 Low2025-08-19
CVE-2025-9168 SolidInvoice Invoice Creation invoice cross site scripting — SolidInvoice 3.5 Low2025-08-19
CVE-2025-9167 SolidInvoice Recurring Invoice recurring cross site scripting — SolidInvoice 3.5 Low2025-08-19
CVE-2025-43744 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 5.4AIMediumAI2025-08-19
CVE-2025-33008 IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting — Sterling B2B Integrator 5.4 Medium2025-08-19
CVE-2025-55735 flaskBlog Stored XSS Vulnerability — FlaskBlog 5.4AIMediumAI2025-08-19

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.