Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21535

21535 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-46517 WordPress Blog Manager WP plugin <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability — Blog Manager WP 5.9 Medium2025-04-24
CVE-2025-46521 WordPress WS Force Login Page plugin <= 3.0.3 - Cross Site Scripting (XSS) Vulnerability — WS Force Login Page 5.9 Medium2025-04-24
CVE-2025-46509 WordPress 360 View plugin <= 1.1.0 - Cross Site Scripting (XSS) Vulnerability — 360 View 6.5 Medium2025-04-24
CVE-2025-46505 WordPress Peekaboo plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability — Peekaboo 6.5 Medium2025-04-24
CVE-2025-46501 WordPress Mixcloud Embed plugin <= 2.2.0 - Cross Site Scripting (XSS) Vulnerability — Mixcloud Embed 6.5 Medium2025-04-24
CVE-2025-46496 WordPress Mini twitter feed plugin <= 3.0 - Cross Site Scripting (XSS) Vulnerability — Mini twitter feed 6.5 Medium2025-04-24
CVE-2025-46491 WordPress Multi-Column Taxonomy List plugin <= 1.5 - Cross Site Scripting (XSS) Vulnerability — Multi-Column Taxonomy List 6.5 Medium2025-04-24
CVE-2025-46483 WordPress Peadig’s Google +1 Button plugin <= 0.1.2 - Cross Site Scripting (XSS) Vulnerability — Peadig’s Google +1 Button 6.5 Medium2025-04-24
CVE-2025-46475 WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability — Able Player 6.5 Medium2025-04-24
CVE-2025-46479 WordPress BBCode Deluxe plugin <= 2020.08.01.2 - Cross Site Scripting (XSS) Vulnerability — BBCode Deluxe 6.5 Medium2025-04-24
CVE-2025-46471 WordPress WP Custom Post Popup plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability — WP Custom Post Popup 6.5 Medium2025-04-24
CVE-2025-46467 WordPress RAphicon plugin <= 2.1.2 - Cross Site Scripting (XSS) Vulnerability — RAphicon 6.5 Medium2025-04-24
CVE-2025-46461 WordPress RRSSB plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability — RRSSB 6.5 Medium2025-04-24
CVE-2025-46453 WordPress Zoho Creator Forms <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability — Zoho Creator Forms 6.5 Medium2025-04-24
CVE-2025-46445 WordPress External Markdown plugin <= 0.0.1 - Cross Site Scripting (XSS) Vulnerability — External Markdown 6.5 Medium2025-04-24
CVE-2025-46449 WordPress WoWHead Tooltips plugin <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability — WoWHead Tooltips 7.1 High2025-04-24
CVE-2025-46438 WordPress GTDB Guitar Tuners plugin <= 4.2.2 - Cross Site Scripting (XSS) Vulnerability — GTDB Guitar Tuners 6.5 Medium2025-04-24
CVE-2025-46540 WordPress GNA Search Shortcode plugin <= 0.9.5 - Cross Site Scripting (XSS) Vulnerability — GNA Search Shortcode 6.5 Medium2025-04-24
CVE-2025-46542 WordPress Xpert Tab plugin <= 1.3 - Cross Site Scripting (XSS) Vulnerability — Xpert Tab 6.5 Medium2025-04-24
CVE-2025-46538 WordPress Inline Text Popup plugin <= 1.0.0 - Cross Site Scripting (XSS) Vulnerability — Inline Text Popup 6.5 Medium2025-04-24
CVE-2025-46536 WordPress Carousel-of-post-images plugin <= 1.07 - Cross Site Scripting (XSS) Vulnerability — Carousel-of-post-images 6.5 Medium2025-04-24
CVE-2025-46534 WordPress Image Style Hover plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability — Image Style Hover 6.5 Medium2025-04-24
CVE-2025-46532 WordPress Tooltip plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability — Tooltip 6.5 Medium2025-04-24
CVE-2025-46502 WordPress LSD Custom taxonomy and category meta plugin <= 1.3.2 - CSRF to XSS vulnerability — LSD Custom taxonomy and category meta 7.1 High2025-04-24
CVE-2025-46499 WordPress PayPal Express Checkout plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability — PayPal Express Checkout 7.1 High2025-04-24
CVE-2025-46484 WordPress Image Hover Effects For WPBakery Page Builder plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability — Image Hover Effects For WPBakery Page Builder 6.5 Medium2025-04-24
CVE-2025-46480 WordPress Nepali Post Date plugin <= 5.1.1 - Cross Site Scripting (XSS) Vulnerability — Nepali Post Date 6.5 Medium2025-04-24
CVE-2025-46478 WordPress Dropdown Content plugin <= 1.0.2 - Cross Site Scripting (XSS) Vulnerability — Dropdown Content 7.1 High2025-04-24
CVE-2025-46476 WordPress Awesome Wp Image Gallery plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability — Awesome Wp Image Gallery 6.5 Medium2025-04-24
CVE-2025-46472 WordPress The Pack Elementor addons plugin <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability — The Pack Elementor addons 6.5 Medium2025-04-24

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21535 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.