Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21532

21532 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-50019 WordPress Simple Sticky Footer plugin <= 1.3.5 - Cross Site Scripting (XSS) Vulnerability — Simple Sticky Footer 5.9 Medium2025-06-20
CVE-2025-50021 WordPress Better Random Redirect plugin <= 1.3.20 - Cross Site Scripting (XSS) Vulnerability — Better Random Redirect 5.9 Medium2025-06-20
CVE-2025-50022 WordPress WP-FB-AutoConnect plugin <= 4.6.4 - Cross Site Scripting (XSS) Vulnerability — WP-FB-AutoConnect 5.9 Medium2025-06-20
CVE-2025-50024 WordPress ATP Call Now plugin <= 1.0.3 - Cross Site Scripting (XSS) Vulnerability — ATP Call Now 5.9 Medium2025-06-20
CVE-2025-50023 WordPress CodePen Embed Block plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability — CodePen Embed Block 5.9 Medium2025-06-20
CVE-2025-50026 WordPress Spoki plugin <= 2.17.0 - Cross Site Scripting (XSS) vulnerability — Spoki 5.9 Medium2025-06-20
CVE-2025-50025 WordPress CP Polls plugin <= 1.0.81 - Cross Site Scripting (XSS) vulnerability — CP Polls 5.9 Medium2025-06-20
CVE-2025-50027 WordPress Login/Signup Popup plugin <= 2.9.4 - Cross Site Scripting (XSS) Vulnerability — Login/Signup Popup 5.9 Medium2025-06-20
CVE-2025-50030 WordPress Spark Multipurpose theme <= 1.0.7 - Cross Site Scripting (XSS) Vulnerability — Spark Multipurpose 6.5 Medium2025-06-20
CVE-2025-50033 WordPress Fitness Park theme <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability — Fitness Park 6.5 Medium2025-06-20
CVE-2025-50035 WordPress Fyrebox Quizzes plugin <= 3.1 - Cross Site Scripting (XSS) Vulnerability — Fyrebox Quizzes 6.5 Medium2025-06-20
CVE-2025-50038 WordPress Anant Addons for Elementor plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability — Anant Addons for Elementor 6.5 Medium2025-06-20
CVE-2025-50037 WordPress Buying Buddy IDX CRM plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability — Buying Buddy IDX CRM 6.5 Medium2025-06-20
CVE-2025-50041 WordPress Gutenberg Blocks – ACF Blocks Suite plugin <= 2.6.11 - Cross Site Scripting (XSS) Vulnerability — Gutenberg Blocks – ACF Blocks Suite 6.5 Medium2025-06-20
CVE-2025-50042 WordPress WP Register Profile With Shortcode plugin <= 3.6.3 - Cross Site Scripting (XSS) Vulnerability — WP Register Profile With Shortcode 6.5 Medium2025-06-20
CVE-2025-50043 WordPress Code Engine plugin <= 0.3.2 - Cross Site Scripting (XSS) Vulnerability — Code Engine 6.5 Medium2025-06-20
CVE-2025-50045 WordPress Related Products Manager for WooCommerce plugin <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability — Related Products Manager for WooCommerce 6.5 Medium2025-06-20
CVE-2025-50046 WordPress WPComplete plugin <= 2.9.5 - Cross Site Scripting (XSS) Vulnerability — WPComplete 6.5 Medium2025-06-20
CVE-2025-50047 WordPress Sitekit plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability — Sitekit 6.5 Medium2025-06-20
CVE-2025-50049 WordPress Modern Footnotes plugin <= 1.4.19 - Cross Site Scripting (XSS) Vulnerability — Modern Footnotes 6.5 Medium2025-06-20
CVE-2025-50048 WordPress Automatically Hierarchic Categories in Menu plugin <= 2.0.9 - Cross Site Scripting (XSS) Vulnerability — Automatically Hierarchic Categories in Menu 6.5 Medium2025-06-20
CVE-2025-50051 WordPress WP-Members plugin <= 3.5.4 - Cross Site Scripting (XSS) Vulnerability — WP-Members 6.5 Medium2025-06-20
CVE-2025-50050 WordPress Jobs for WordPress plugin <= 2.7.14 - Cross Site Scripting (XSS) Vulnerability — Jobs for WordPress 6.5 Medium2025-06-20
CVE-2025-52782 WordPress Scroll UP plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability — Scroll UP 7.1 High2025-06-20
CVE-2025-52733 WordPress ANON::form embedded secure form plugin <= 1.7 - Cross Site Scripting (XSS) Vulnerability — ANON::form embedded secure form 6.5 Medium2025-06-20
CVE-2025-52710 WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability — File Manager Pro 5.9 Medium2025-06-20
CVE-2025-52707 WordPress Firelight Lightbox plugin <= 2.3.16 - Cross Site Scripting (XSS) Vulnerability — Firelight Lightbox 6.5 Medium2025-06-20
CVE-2025-6345 SourceCodester My Food Recipe Add Recipe Page add-recipe.php addRecipeModal cross site scripting — My Food Recipe 3.5 Low2025-06-20
CVE-2025-6340 code-projects School Fees Payment System branch.php cross site scripting — School Fees Payment System 3.5 Low2025-06-20
CVE-2025-6257 Euro FxRef Currency Converter <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via currency Shortcode — Euro FxRef Currency Converter (by DKZR) 6.4 Medium2025-06-20

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.