Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-8690 Simple Responsive Slider <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Simple Responsive Slider 6.4 Medium2025-08-12
CVE-2025-8685 Wp chart generator <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpchart Shortcode — Wp chart generator 6.4 Medium2025-08-12
CVE-2025-8462 RT Easy Builder <= 2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting — RT Easy Builder – Advanced addons for Elementor 6.4 Medium2025-08-12
CVE-2025-42975 Multiple vulnerabilities in SAP NetWeaver Application Server ABAP (BIC Document) — SAP NetWeaver Application Server ABAP (BIC Document) 6.1 Medium2025-08-12
CVE-2025-42948 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Platform — SAP NetWeaver ABAP Platform 6.1 Medium2025-08-12
CVE-2025-42942 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server for ABAP — SAP NetWeaver Application Server for ABAP 6.1 Medium2025-08-12
CVE-2025-8847 yangzongzhuan RuoYi edit cross site scripting — RuoYi 3.5 Low2025-08-11
CVE-2025-8834 JCG Link-net LW-N915R Wireless Basic Settings basic.asp cross site scripting — Link-net LW-N915R 2.4 Low2025-08-11
CVE-2025-8812 atjiu pybbs Admin Panel settings cross site scripting — pybbs 2.4 Low2025-08-10
CVE-2025-8788 Portabilis i-Diario Informações adicionais planos-de-aula-por-areas-de-conhecimento cross site scripting — i-Diario 3.5 Low2025-08-10
CVE-2025-8787 Portabilis i-Diario Registro das atividades registros-de-conteudos-por-disciplina cross site scripting — i-Diario 3.5 Low2025-08-10
CVE-2025-8786 Portabilis i-Diario Registro das atividades registros-de-conteudos-por-areas-de-conhecimento cross site scripting — i-Diario 3.5 Low2025-08-10
CVE-2025-8785 Portabilis i-Educar educar_usuario_lst.php cross site scripting — i-Educar 3.5 Low2025-08-09
CVE-2025-8784 Portabilis i-Educar Cadastrar Vínculo funcionario_vinculo_cad.php cross site scripting — i-Educar 3.5 Low2025-08-09
CVE-2025-8765 Datacom DM955 5GT 1200 Wireless Basic Settings cross site scripting — DM955 5GT 1200 3.5 Low2025-08-09
CVE-2025-7726 The7 <= 12.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via title and data-dt-img-description Attributes — The7 — Website and eCommerce Builder for WordPress 6.4 Medium2025-08-09
CVE-2025-8751 Protected Total WebShield Extension Block Page cross site scripting — Total WebShield Extension 3.1 Low2025-08-09
CVE-2025-8750 macrozheng mall Add Product Page upload cross site scripting — mall 2.4 Low2025-08-09
CVE-2025-8743 Scada-LTS Virtual Data Source Property data_source_edit.shtm cross site scripting — Scada-LTS 3.5 Low2025-08-08
CVE-2025-8740 zhenfeng13 My-Blog Category save cross site scripting — My-Blog 2.4 Low2025-08-08
CVE-2025-4576 Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal 6.1 -2025-08-08
CVE-2025-54784 SuiteCRM is vulnerable to Cross Site Scripting (XSS) through its email viewer — SuiteCRM 8.8AIHighAI2025-08-07
CVE-2025-54783 SuiteCRM: Reflected Cross Site Scripting (XSS) through HTTP Referrer header — SuiteCRM 6.1AIMediumAI2025-08-07
CVE-2025-55134 agora 跨站脚本漏洞 — Agora 6.4 Medium2025-08-07
CVE-2025-55133 agora 跨站脚本漏洞 — Agora 6.4 Medium2025-08-07
CVE-2025-7727 Gutenverse <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Animated Text and Fun Fact Blocks — Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem 6.4 Medium2025-08-06
CVE-2025-7399 Betheme <= 28.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting — Betheme 6.4 Medium2025-08-06
CVE-2025-7498 Exclusive Addons for Elementor <= 2.7.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown — Exclusive Addons for Elementor 6.4 Medium2025-08-06
CVE-2025-8100 Element Pack Elementor Addons and Templates <= 8.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Open Street Map Widget Marker Content — Element Pack – Widgets, Templates & Addons for Elementor 5.4 Medium2025-08-06
CVE-2025-7502 WPBakery Page Builder for WordPress <= 8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting — WPBakery Page Builder 6.4 Medium2025-08-06

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.