Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21532

21532 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-7925 PHPGurukul Online Banquet Booking System login.php cross site scripting — Online Banquet Booking System 4.3 Medium2025-07-21
CVE-2025-7924 PHPGurukul Online Banquet Booking System admin-profile.php cross site scripting — Online Banquet Booking System 3.5 Low2025-07-21
CVE-2025-41681 Persistent Cross-Site Scripting via POST Requests Due to Improper Neutralization of Input — mbNET.mini 4.8 Medium2025-07-21
CVE-2025-7354 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Plugin Shortcodes — WP Shortcodes Plugin — Shortcodes Ultimate 6.4 Medium2025-07-21
CVE-2025-4685 Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor <= 3.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor 6.4 Medium2025-07-21
CVE-2025-7920 Simopro Technology|WinMatrix3 Web package - Reflected Cross-Site Scripting — WinMatrix3 Web package 6.1 Medium2025-07-21
CVE-2025-7902 yangzongzhuan RuoYi SysNoticeController.java addSave cross site scripting — RuoYi 3.5 Low2025-07-20
CVE-2025-7901 yangzongzhuan RuoYi Swagger UI index.html cross site scripting — RuoYi 4.3 Medium2025-07-20
CVE-2025-46383 Web和ring 跨站脚本漏洞 — Windows 6.1 Medium2025-07-20
CVE-2025-7887 Zavy86 WikiDocs template.inc.php cross site scripting — WikiDocs 4.3 Medium2025-07-20
CVE-2025-7885 Huashengdun WebSSH Login Page cross site scripting — WebSSH 4.3 Medium2025-07-20
CVE-2025-7872 Portabilis i-Diario justificativas-de-falta cross site scripting — i-Diario 3.5 Low2025-07-20
CVE-2025-7871 Portabilis i-Diario conteudos cross site scripting — i-Diario 3.5 Low2025-07-20
CVE-2025-7870 Portabilis i-Diario justificativas-de-falta Endpoint cross site scripting — i-Diario 3.5 Low2025-07-20
CVE-2025-7869 Portabilis i-Educar Turma Module educar_turma_tipo_det.php cross site scripting — i-Educar 3.5 Low2025-07-20
CVE-2025-7868 Portabilis i-Educar Calendar educar_calendario_dia_motivo_cad.php cross site scripting — i-Educar 3.5 Low2025-07-20
CVE-2025-7867 Portabilis i-Educar Agenda agenda.php cross site scripting — i-Educar 3.5 Low2025-07-20
CVE-2025-7866 Portabilis i-Educar Disabilities Module educar_deficiencia_lst.php cross site scripting — i-Educar 3.5 Low2025-07-20
CVE-2025-7865 thinkgem JeeSite XSS Filter EncodeUtils.java xssFilter cross site scripting — JeeSite 3.5 Low2025-07-20
CVE-2025-54316 Logpoint 跨站脚本漏洞 — Logpoint 4.9 Medium2025-07-20
CVE-2025-7858 PHPGurukul Apartment Visitors Management System HTTP POST Request admin-profile.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7857 PHPGurukul Apartment Visitors Management System HTTP POST Request bwdates-passreports-details.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7856 PHPGurukul Apartment Visitors Management System HTTP POST Request pass-details.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7840 Campcodes Online Movie Theater Seat Reservation System Reserve Your Seat Page index.php cross site scripting — Online Movie Theater Seat Reservation System 3.5 Low2025-07-19
CVE-2025-7819 PHPGurukul Apartment Visitors Management System HTTP POST Request create-pass.php cross site scripting — Apartment Visitors Management System 2.4 Low2025-07-19
CVE-2025-7818 PHPGurukul Apartment Visitors Management System HTTP POST Request category.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7817 PHPGurukul Apartment Visitors Management System HTTP POST Request bwdates-reports.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7816 PHPGurukul Apartment Visitors Management System HTTP POST Request visitor-detail.php cross site scripting — Apartment Visitors Management System 3.5 Low2025-07-19
CVE-2025-7815 PHPGurukul Apartment Visitors Management System HTTP POST Request manage-newvisitors.php cross site scripting — Apartment Visitors Management System 2.4 Low2025-07-19
CVE-2025-6997 ThemeREX Addons <= 2.35.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trx_addons_get_svg_from_file Function — ThemeREX Addons 6.4 Medium2025-07-19

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.