Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-54699 WordPress Masteriyo - LMS Plugin plugin <= 1.18.3 - Cross Site Scripting (XSS) Vulnerability — Masteriyo - LMS 6.5 Medium2025-08-14
CVE-2025-54696 WordPress WPFunnels plugin <= 3.5.26 - Cross Site Scripting (XSS) vulnerability — WPFunnels 6.5 Medium2025-08-14
CVE-2025-54688 WordPress JetEngine Plugin plugin <= 3.7.1.2 - Cross Site Scripting (XSS) Vulnerability — JetEngine 6.5 Medium2025-08-14
CVE-2025-54687 WordPress JetTabs Plugin plugin <= 2.2.9.1 - Cross Site Scripting (XSS) Vulnerability — JetTabs 6.5 Medium2025-08-14
CVE-2025-54683 WordPress WP Modal Popup with Cookie Integration Plugin plugin <= 2.4 - Cross Site Scripting (XSS) Vulnerability — WP Modal Popup with Cookie Integration 5.9 Medium2025-08-14
CVE-2025-54684 WordPress Integration for Contact Form 7 and Constant Contact Plugin plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability — Integration for Contact Form 7 and Constant Contact 5.9 Medium2025-08-14
CVE-2025-54680 WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability — Blogger Buzz 6.5 Medium2025-08-14
CVE-2025-54676 WordPress Online Booking & Scheduling Calendar for by vcita Plugin plugin <= 4.5.3 - Cross Site Scripting (XSS) Vulnerability — Online Booking & Scheduling Calendar for WordPress by vcita 6.5 Medium2025-08-14
CVE-2025-54668 WordPress myCred plugin <= 2.9.4.3 - Cross Site Scripting (XSS) Vulnerability — myCred 6.5 Medium2025-08-14
CVE-2025-28975 WordPress Alike - WordPress Custom Post Comparison <= 3.0.1 - Cross Site Scripting (XSS) Vulnerability — Alike - WordPress Custom Post Comparison 7.1 High2025-08-14
CVE-2025-28999 WordPress WooCommerce Shop Page Builder <= 2.27.7 - Cross Site Scripting (XSS) Vulnerability — WooCommerce Shop Page Builder 7.1 High2025-08-14
CVE-2025-29014 WordPress FoodMenu <= 1.20 - Cross Site Scripting (XSS) Vulnerability — FoodMenu 7.1 High2025-08-14
CVE-2025-30626 WordPress Multimedia Playlist Slider Addon for WPBakery Page Builder <= 2.1 - Cross Site Scripting (XSS) Vulnerability — Multimedia Playlist Slider Addon for WPBakery Page Builder 7.1 High2025-08-14
CVE-2025-31007 WordPress Billplz Addon for Contact Form 7 Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability — Billplz Addon for Contact Form 7 7.1 High2025-08-14
CVE-2025-47610 WordPress WooCommerce Fortnox Integration <= 4.5.6 - Cross Site Scripting (XSS) Vulnerability — WooCommerce Fortnox Integration 6.5 Medium2025-08-14
CVE-2025-47689 WordPress Video Blogster Lite plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability — Video Blogster Lite 7.1 High2025-08-14
CVE-2025-49037 WordPress Authentication and xmlrpc log writer plugin <= 1.2.2 - Reflected Cross Site Scripting (XSS) vulnerability — Authentication and xmlrpc log writer 7.1 High2025-08-14
CVE-2025-49038 WordPress WP Dynamic Links plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Dynamic Links 7.1 High2025-08-14
CVE-2025-49047 WordPress DigitalOcean Spaces Sync plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability — DigitalOcean Spaces Sync 5.9 Medium2025-08-14
CVE-2025-49048 WordPress Inspectlet – User Session Recording and Heatmaps plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability — Inspectlet – User Session Recording and Heatmaps 5.9 Medium2025-08-14
CVE-2025-49051 WordPress Hide Text Shortcode plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability — Hide Text Shortcode 6.5 Medium2025-08-14
CVE-2025-49053 WordPress WP Airdrop Manager plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability — WP Airdrop Manager 5.9 Medium2025-08-14
CVE-2025-49054 WordPress Time Sheets plugin <= 2.1.3 - Reflected Cross Site Scripting (XSS) vulnerability — Time Sheets 7.1 High2025-08-14
CVE-2025-49056 WordPress 多说社会化评论框 Plugin <= 1.2 - Cross Site Scripting (XSS) Vulnerability — 多说社会化评论框 7.1 High2025-08-14
CVE-2025-49057 WordPress WP Voting Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability — WP Voting 7.1 High2025-08-14
CVE-2025-49058 WordPress SoundSt SEO Search plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability — SoundSt SEO Search 7.1 High2025-08-14
CVE-2025-49061 WordPress Porn Videos Embed plugin <= 0.9.1 - Cross Site Scripting (XSS) vulnerability — Porn Videos Embed 6.5 Medium2025-08-14
CVE-2025-49062 WordPress WP-jScrollPane plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP-jScrollPane 7.1 High2025-08-14
CVE-2025-49063 WordPress BaiduXZH Submit(百度熊掌号) plugin <= 1.4.6 - Reflected Cross Site Scripting (XSS) vulnerability — BaiduXZH Submit(百度熊掌号) 7.1 High2025-08-14
CVE-2025-49064 WordPress User Language Switch plugin <= 1.6.10 - Reflected Cross Site Scripting (XSS) vulnerability — User Language Switch 7.1 High2025-08-14

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.