Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21534

21534 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-30937 WordPress Responsify WP plugin <= 1.9.11 - Cross Site Scripting (XSS) Vulnerability — Responsify WP 5.9 Medium2025-06-06
CVE-2025-30938 WordPress Broadly for WordPress plugin <= 3.0.2 - Cross Site Scripting (XSS) Vulnerability — Broadly for WordPress 5.9 Medium2025-06-06
CVE-2025-30939 WordPress IFrame Widget plugin <= 4.1 - Cross Site Scripting (XSS) Vulnerability — IFrame Widget 5.9 Medium2025-06-06
CVE-2025-30941 WordPress Pinterest Verify Meta Tag plugin <= 1.3 - Cross Site Scripting (XSS) Vulnerability — Pinterest Verify Meta Tag 5.9 Medium2025-06-06
CVE-2025-30940 WordPress Melipayamak plugin <= 2.2.12 - Cross Site Scripting (XSS) Vulnerability — Melipayamak 5.9 Medium2025-06-06
CVE-2025-30942 WordPress Post Custom Templates Lite plugin <= 1.14 - Cross Site Scripting (XSS) Vulnerability — Post Custom Templates Lite 5.9 Medium2025-06-06
CVE-2025-30951 WordPress BlockStrap Page Builder - Bootstrap Blocks plugin <= 0.1.36 - Cross Site Scripting (XSS) Vulnerability — BlockStrap Page Builder - Bootstrap Blocks 6.5 Medium2025-06-06
CVE-2025-30950 WordPress All Currencies for WooCommerce plugin <= 2.4.3 - Cross Site Scripting (XSS) vulnerability — All Currencies for WooCommerce 6.5 Medium2025-06-06
CVE-2025-30952 WordPress Nexa Blocks plugin <= 1.1.0 - Cross Site Scripting (XSS) Vulnerability — Nexa Blocks 6.5 Medium2025-06-06
CVE-2025-30977 WordPress Chaport <= 1.1.6 - Cross Site Scripting (XSS) Vulnerability — Chaport 5.9 Medium2025-06-06
CVE-2025-30991 WordPress Premium Packages plugin <= 6.0.6 - Cross Site Scripting (XSS) Vulnerability — WPDM – Premium Packages 6.5 Medium2025-06-06
CVE-2025-31025 WordPress Image Hover Effects Block plugin <= 1.4.5 - Cross Site Scripting (XSS) Vulnerability — Image Hover Effects Block 6.5 Medium2025-06-06
CVE-2025-49333 WordPress Simple Membership plugin <= 4.6.3 - Cross Site Scripting (XSS) Vulnerability — Simple Membership 5.9 Medium2025-06-06
CVE-2025-49322 WordPress 404 Page by SeedProd < 1.0.2 - Cross Site Scripting (XSS) Vulnerability — 404 Page by SeedProd 5.9 Medium2025-06-06
CVE-2025-49318 WordPress WPtouch plugin <= 4.3.60 - Cross Site Scripting (XSS) Vulnerability — WPtouch 5.9 Medium2025-06-06
CVE-2025-49314 WordPress BRW plugin <= 1.8.6 - Cross Site Scripting (XSS) Vulnerability — BRW 6.5 Medium2025-06-06
CVE-2025-49310 WordPress Frontend Dashboard plugin <= 2.2.8 - Cross Site Scripting (XSS) Vulnerability — Frontend Dashboard 6.5 Medium2025-06-06
CVE-2025-49311 WordPress The Events Calendar Countdown Addon plugin <= 1.4.9 - Cross Site Scripting (XSS) Vulnerability — The Events Calendar Countdown Addon 6.5 Medium2025-06-06
CVE-2025-49309 WordPress HT Team Member plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability — HT Team Member 6.5 Medium2025-06-06
CVE-2025-49306 WordPress WP Social Widget plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability — WP Social Widget 6.5 Medium2025-06-06
CVE-2025-49304 WordPress Search with Typesense plugin <= 2.0.10 - Cross Site Scripting (XSS) Vulnerability — Search with Typesense 6.5 Medium2025-06-06
CVE-2025-49305 WordPress Product Catalog Simple plugin <= 1.8.1 - Cross Site Scripting (XSS) Vulnerability — Product Catalog Simple 6.5 Medium2025-06-06
CVE-2025-49299 WordPress WebHotelier plugin <= 1.9.2 - Cross Site Scripting (XSS) Vulnerability — WebHotelier 6.5 Medium2025-06-06
CVE-2025-49298 WordPress Event post plugin <= 5.10.1 - Cross Site Scripting (XSS) Vulnerability — Event post 6.5 Medium2025-06-06
CVE-2025-49301 WordPress Greenshift plugin <= 11.5.5 - Cross Site Scripting (XSS) Vulnerability — Greenshift 6.5 Medium2025-06-06
CVE-2025-49262 WordPress Sina Extension for Elementor plugin <= 3.6.1 - Cross Site Scripting (XSS) Vulnerability — Sina Extension for Elementor 7.6 High2025-06-06
CVE-2025-49244 WordPress Shortcodes Ultimate plugin <= 7.3.5 - Cross Site Scripting (XSS) Vulnerability — Shortcodes Ultimate 6.5 Medium2025-06-06
CVE-2025-49243 WordPress ShiftNav – Responsive Mobile Menu plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability — ShiftNav – Responsive Mobile Menu 6.5 Medium2025-06-06
CVE-2025-49242 WordPress Bellows Accordion Menu plugin <= 1.4.3 - Cross Site Scripting (XSS) Vulnerability — Bellows Accordion Menu 6.5 Medium2025-06-06
CVE-2025-49235 WordPress RTMKit Addons for Elementor plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability — RTMKit 6.5 Medium2025-06-06

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21534 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.