Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-13673 Big Boom Directory <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Big Boom Directory 6.4 Medium2025-04-03
CVE-2025-3153 Concrete CMS version 9 below 9.4.0RC2 and versions below 8.5.20 - CSRF and XSS in Concrete CMS Custom Address attribute — Concrete CMS 5.4AIMediumAI2025-04-03
CVE-2025-3130 Obfuscate - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-029 — Obfuscate 5.4 -2025-04-02
CVE-2025-27608 Self Cross-Site Scripting in Arduino IDE — arduino-ide 6.1AIMediumAI2025-04-02
CVE-2025-20203 Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure 跨站脚本漏洞 — Cisco Prime Infrastructure 4.8 Medium2025-04-02
CVE-2025-20120 Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure 跨站脚本漏洞 — Cisco Prime Infrastructure 6.1 Medium2025-04-02
CVE-2024-56475 IBM TXSeries for Multiplatforms cross-site scripting — TXSeries for Multiplatforms 5.4 Medium2025-04-02
CVE-2024-56341 IBM Content Navigator cross-site scripting — Content Navigator 5.4 Medium2025-04-02
CVE-2025-3097 wp Time Machine <= 3.4.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting — wp Time Machine 6.1 Medium2025-04-02
CVE-2025-2483 Gift Certificate Creator <= 1.1.0 - Reflected Cross-Site Scripting via receip_address Parameter — Gift Certificate Creator 6.1 Medium2025-04-02
CVE-2025-2513 Smart Icons For WordPress <= 1.0.4 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload — Smart Icons For WordPress 6.4 Medium2025-04-02
CVE-2025-3098 Video Url <= 1.0.0.3 - Reflected Cross-Site Scripting — Video Url 6.1 Medium2025-04-02
CVE-2024-45699 Reflected XSS vulnerability in /zabbix.php?action=export.valuemaps — Zabbix 6.1AIMediumAI2025-04-02
CVE-2025-27693 Dell Wyse Management Suite 跨站脚本漏洞 — Wyse Management Suite 4.9 Medium2025-04-02
CVE-2025-30090 SquirrelMail 跨站脚本漏洞 — SquirrelMail 7.2 High2025-04-02
CVE-2025-31819 WordPress Nova Blocks by Pixelgrade plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability — Nova Blocks 6.5 Medium2025-04-01
CVE-2025-31889 WordPress Extensions for Elementor plugin <= 2.0.40 - Cross Site Scripting (XSS) vulnerability — Extensions for Elementor 6.5 Medium2025-04-01
CVE-2025-31578 WordPress Fonts Manager | Custom Fonts plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability — Fonts Manager | Custom Fonts 7.1 High2025-04-01
CVE-2025-31594 WordPress Auto scroll for reading plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability — Auto scroll for reading 7.1 High2025-04-01
CVE-2025-31571 WordPress The Logo Slider plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability — The Logo Slider 7.1 High2025-04-01
CVE-2025-31563 WordPress AI Search Bar plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability — AI Search Bar 7.1 High2025-04-01
CVE-2025-31568 WordPress LeadLab by wiredminds plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability — LeadLab by wiredminds 7.1 High2025-04-01
CVE-2025-31548 WordPress Ultimate Push Notifications plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability — Ultimate Push Notifications 7.1 High2025-04-01
CVE-2025-31537 WordPress Bulk NoIndex & NoFollow Toolkit plugin <= 2.16 - Reflected Cross Site Scripting (XSS) vulnerability — Bulk NoIndex & NoFollow Toolkit 7.1 High2025-04-01
CVE-2025-31454 WordPress Delete Post Revision plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — Delete Post Revision 7.1 High2025-04-01
CVE-2025-31462 WordPress CGM Event Calendar plugin <= 0.8.5 - Cross Site Scripting (XSS) Vulnerability — CGM Event Calendar 7.1 High2025-04-01
CVE-2025-31461 WordPress NanoSupport plugin <= 0.6.0 - Reflected Cross Site Scripting (XSS) vulnerability — NanoSupport 7.1 High2025-04-01
CVE-2025-31455 WordPress Limit Max IPs Per User plugin <= 1.5 - Reflected Cross Site Scripting (XSS) vulnerability — Limit Max IPs Per User 7.1 High2025-04-01
CVE-2025-31446 WordPress WP Cleaner plugin <= 1.1.5 - Reflected Cross Site Scripting (XSS) vulnerability — WP Cleaner 7.1 High2025-04-01
CVE-2025-31441 WordPress WordPress Galleria plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability — WordPress Galleria 7.1 High2025-04-01

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.