Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21530

21530 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-6256 Flex Guten <= 1.2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via thumbnailHoverEffect Parameter — Flex Guten – Multile Blocks 6.4 Medium2025-08-06
CVE-2025-6690 WP Tournament Registration <= 1.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via field Parameter — WP Tournament Registration 6.4 Medium2025-08-06
CVE-2025-6259 esri-map-view <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via esri-map-view Shortcode — esri-map-view 6.4 Medium2025-08-06
CVE-2025-32430 XWiki Platform contains Reflected XSS vulnerability in two templates — xwiki-platform 6.1AIMediumAI2025-08-05
CVE-2012-10032 Maxthon3 about:history XCS Trusted Zone Code Execution — Maxthon3 Browser 8.8AIHighAI2025-08-05
CVE-2025-46958 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) — Adobe Experience Manager 5.4 Medium2025-08-05
CVE-2025-8555 atjiu pybbs search cross site scripting — pybbs 3.5 Low2025-08-05
CVE-2025-8554 atjiu pybbs list cross site scripting — pybbs 2.4 Low2025-08-05
CVE-2025-8553 atjiu pybbs list cross site scripting — pybbs 2.4 Low2025-08-05
CVE-2025-8552 atjiu pybbs list cross site scripting — pybbs 2.4 Low2025-08-05
CVE-2025-8551 atjiu pybbs list cross site scripting — pybbs 3.5 Low2025-08-05
CVE-2025-8294 Download Counter <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via name Parameter — Download Counter 6.4 Medium2025-08-05
CVE-2025-8295 Employee Directory <= 4.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter — Employee Directory – Staff & Team Directory 6.4 Medium2025-08-05
CVE-2025-8550 atjiu pybbs list cross site scripting — pybbs 2.4 Low2025-08-05
CVE-2025-7050 Use-your-Drive | Google Drive plugin for WordPress <= 3.3.1- Unauthenticated Stored Cross-Site Scripting via File Metadata — Use-your-Drive | Google Drive plugin for WordPress 7.2 High2025-08-05
CVE-2025-8313 Campus Directory <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter — Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress 6.4 Medium2025-08-05
CVE-2025-8315 WP Easy Contact <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via noaccess_msg Parameter — Simple Contact Form Plugin for WordPress – WP Easy Contact 6.4 Medium2025-08-05
CVE-2025-8545 Portabilis i-Educar educar_motivo_afastamento_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8544 Portabilis i-Educar edit cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8543 Portabilis i-Educar educar_raca_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8542 Portabilis i-Educar empresas_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8541 Portabilis i-Educar public_uf_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8540 Portabilis i-Educar public_municipio_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8539 Portabilis i-Educar public_distrito_cad.php cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8538 Portabilis i-Educar novo cross site scripting — i-Educar 2.4 Low2025-08-05
CVE-2025-8535 cronoh NanoVault xrb URL main.js executeJavaScript cross site scripting — NanoVault 3.5 Low2025-08-05
CVE-2025-4604 Liferay Portal 跨站脚本漏洞 — Portal 7.3AIHighAI2025-08-04
CVE-2025-4599 Liferay Portal 跨站脚本漏洞 — Portal 6.1AIMediumAI2025-08-04
CVE-2025-8521 givanz Vvveb Add Type post-types cross site scripting — Vvveb 2.4 Low2025-08-04
CVE-2025-36605 Dell Unity 跨站脚本漏洞 — Unity 6.1 Medium2025-08-04

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.