CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-8604	WP Table Builder – WordPress Table Plugin <= 2.0.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — WP Table Builder – Drag & Drop Table Builder	6.4	Medium	2025-08-15
CVE-2025-9017	PHPGurukul Zoo Management System add-foreigner-ticket.php cross site scripting — Zoo Management System	4.3	Medium	2025-08-15
CVE-2025-8451	Essential Addons for Elementor – Popular Elementor Templates and Widgets <= 6.2.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'data-gallery-items' — Essential Addons for Elementor – Popular Elementor Templates & Widgets	6.4	Medium	2025-08-15
CVE-2025-9003	D-Link DIR-818LW DHCP Reserved Address bsc_lan.php cross site scripting — DIR-818LW	3.5	Low	2025-08-15
CVE-2025-8867	Graphina - Elementor Charts and Graphs <= 3.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting — Graphina – Charts and Graphs For Elementor	6.4	Medium	2025-08-15
CVE-2025-8976	givanz Vvveb Endpoint post cross site scripting — Vvveb	3.5	Low	2025-08-14
CVE-2025-8975	givanz Vvveb edit.tpl cross site scripting — Vvveb	3.5	Low	2025-08-14
CVE-2025-52771	WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability — Video Expander	6.5	Medium	2025-08-14
CVE-2025-53330	WordPress WP Rentals theme <= 3.16.1 - Cross Site Scripting (XSS) vulnerability — WP Rentals	6.5	Medium	2025-08-14
CVE-2025-53342	WordPress Modernize Theme <= 3.4.0 - Cross Site Scripting (XSS) Vulnerability — Modernize	6.5	Medium	2025-08-14
CVE-2025-53575	WordPress Primer MyData for Woocommerce Plugin <= 4.2.5 - Cross Site Request Forgery (CSRF) Vulnerability — Primer MyData for Woocommerce	7.1	High	2025-08-14
CVE-2025-53581	WordPress RSS Feed Pro Plugin <= 1.1.8 - Cross Site Scripting (XSS) Vulnerability — RSS Feed Pro	5.9	Medium	2025-08-14
CVE-2025-53582	WordPress WordLift Plugin <= 3.54.5 - Cross Site Scripting (XSS) Vulnerability — WordLift	6.5	Medium	2025-08-14
CVE-2025-54054	WordPress 12 Step Meeting List Plugin <= 3.18.3 - Cross Site Scripting (XSS) Vulnerability — 12 Step Meeting List	6.5	Medium	2025-08-14
CVE-2025-54708	WordPress B Blocks Plugin <= 2.0.5 - Cross Site Scripting (XSS) Vulnerability — B Blocks	6.5	Medium	2025-08-14
CVE-2025-54727	WordPress CM On Demand Search And Replace Plugin <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability — CM On Demand Search And Replace	5.9	Medium	2025-08-14
CVE-2025-54729	WordPress Webba Booking Plugin <= 6.0.5 - Cross Site Scripting (XSS) Vulnerability — Webba Booking	5.9	Medium	2025-08-14
CVE-2025-54740	WordPress Print My Blog Plugin <= 3.27.9 - Cross Site Scripting (XSS) Vulnerability — Print My Blog	6.5	Medium	2025-08-14
CVE-2025-54746	WordPress Shortcode Redirect Plugin <= 1.0.02 - Cross Site Scripting (XSS) Vulnerability — Shortcode Redirect	6.5	Medium	2025-08-14
CVE-2025-54747	WordPress Templatera Plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability — Templatera	6.5	Medium	2025-08-14
CVE-2025-54749	WordPress JetProductGallery Plugin <= 2.2.0.2 - Cross Site Scripting (XSS) Vulnerability — JetProductGallery	6.5	Medium	2025-08-14
CVE-2025-55709	WordPress Visual Composer Website Builder Plugin < 45.15.0 - Cross Site Scripting (XSS) Vulnerability — Visual Composer Website Builder	6.5	Medium	2025-08-14
CVE-2025-55711	WordPress WP Table Builder Plugin <= 2.0.12 - Cross Site Scripting (XSS) Vulnerability — WP Table Builder	6.5	Medium	2025-08-14
CVE-2025-55713	WordPress Blocksy Theme <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability — Blocksy	5.9	Medium	2025-08-14
CVE-2025-55714	WordPress JetElements For Elementor Plugin <= 2.7.9 - Cross Site Scripting (XSS) Vulnerability — JetElements For Elementor	6.5	Medium	2025-08-14
CVE-2024-37945	WordPress WPBITS Addons For Elementor plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability — WPBITS Addons For Elementor Page Builder	6.5	Medium	2025-08-14
CVE-2025-20235	Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability — Cisco Firepower Management Center	6.1	Medium	2025-08-14
CVE-2025-53631	flaskBlog XSS Vulnerability in postContent — flaskBlog	6.1^AI	Medium^AI	2025-08-14
CVE-2025-54706	WordPress Magical Posts Display Plugin plugin <= 1.2.52 - Cross Site Scripting (XSS) Vulnerability — Magical Posts Display	6.5	Medium	2025-08-14
CVE-2025-54704	WordPress Easy Elementor Addons plugin <= 2.2.6 - Cross Site Scripting (XSS) Vulnerability — Easy Elementor Addons	6.5	Medium	2025-08-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530