Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21532

21532 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-52561 HTMLSanitizer.jl Possible XSS — HTMLSanitizer.jl 5.4AIMediumAI2025-06-23
CVE-2025-52558 ChangeDetection.io XSS in watch overview — changedetection.io 5.4AIMediumAI2025-06-23
CVE-2025-49126 Visionatrix Vulnerable to Reflected XSS Leading to Exfiltration of Secrets — Visionatrix 8.8 High2025-06-23
CVE-2025-6509 seaswalker spring-analysis SimpleController.java echo cross site scripting — spring-analysis 3.5 Low2025-06-23
CVE-2025-52879 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 4.8 Medium2025-06-23
CVE-2025-52877 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 4.8 Medium2025-06-23
CVE-2025-52875 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 5.4 Medium2025-06-23
CVE-2025-52876 JetBrains TeamCity 跨站脚本漏洞 — TeamCity 5.4 Medium2025-06-23
CVE-2025-6477 SourceCodester Student Result Management System System Settings Page system cross site scripting — Student Result Management System 2.4 Low2025-06-22
CVE-2025-6475 SourceCodester Student Result Management System Manage Students Module manage_students cross site scripting — Student Result Management System 2.4 Low2025-06-22
CVE-2025-6473 code-projects School Fees Payment System fees.php cross site scripting — School Fees Payment System 4.3 Medium2025-06-22
CVE-2025-6452 CodeAstro Patient Record Management System Generate New Report Page cross site scripting — Patient Record Management System 2.4 Low2025-06-22
CVE-2025-1987 Stored XSS in Psono-Client via Malicious Vault Entry URLs — Psono-client 6.1AIMediumAI2025-06-21
CVE-2025-5289 3D FlipBook - Lite Edition <= 1.16.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via style and mode Parameters — 3D FlipBook – PDF Embedder, PDF Flipbook Viewer, Flipbook Image Gallery 6.4 Medium2025-06-21
CVE-2025-5143 TableOn – WordPress Posts Table Filterable <= 1.0.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via tableon_popup_iframe_button Shortcode — TableOn – WordPress Posts Table Filterable 6.4 Medium2025-06-21
CVE-2025-52486 DNN.PLATFORM Allows Reflected Cross-Site Scripting (XSS) in some TokenReplace situations with SkinObjects — Dnn.Platform 4.3AIMediumAI2025-06-21
CVE-2025-52485 DNN.PLATFORM Allows Stored Cross-Site Scripting (XSS) in Activity Feed — Dnn.Platform 4.6AIMediumAI2025-06-21
CVE-2025-2443 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLab 8.7 High2025-06-20
CVE-2025-6353 code-projects Responsive Blog search.php cross site scripting — Responsive Blog 3.5 Low2025-06-20
CVE-2025-6347 code-projects Responsive Blog pageViewMembers.php cross site scripting — Responsive Blog 2.4 Low2025-06-20
CVE-2025-49873 WordPress Elessi theme <= 6.3.9 - Cross Site Scripting (XSS) Vulnerability — Elessi 7.1 High2025-06-20
CVE-2025-50011 WordPress plugin Recipes manager - WPH <=1.0.4 - Cross Site Scripting (XSS) Vulnerability — Recipes manager - WPH 5.9 Medium2025-06-20
CVE-2025-50012 WordPress Inventory Presser plugin <= 15.2.6 - Cross Site Scripting (XSS) vulnerability — Inventory Presser 5.9 Medium2025-06-20
CVE-2025-50014 WordPress PDPA Consent for Thailand plugin <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability — PDPA Consent for Thailand 5.9 Medium2025-06-20
CVE-2025-50013 WordPress CSV Importer Improved plugin <= 0.6.1 - Cross Site Scripting (XSS) Vulnerability — CSV Importer Improved 5.9 Medium2025-06-20
CVE-2025-50015 WordPress Hand Talk plugin <= 6.1 - Cross Site Scripting (XSS) Vulnerability — Hand Talk 5.9 Medium2025-06-20
CVE-2025-50016 WordPress IP Based Login plugin <= 2.4.2 - Cross Site Scripting (XSS) Vulnerability — IP Based Login 5.9 Medium2025-06-20
CVE-2025-50018 WordPress Tealium plugin <= 2.1.20 - Cross Site Scripting (XSS) Vulnerability — Tealium 5.9 Medium2025-06-20
CVE-2025-50017 WordPress WP Voting Contest plugin <= 5.8 - Cross Site Scripting (XSS) Vulnerability — WP Voting Contest 5.9 Medium2025-06-20
CVE-2025-50020 WordPress RDFa Breadcrumb plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability — RDFa Breadcrumb 5.9 Medium2025-06-20

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.