Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31431 WordPress WP Bookmarks plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Bookmarks 7.1 High2025-04-01
CVE-2025-31445 WordPress Pages Order plugin <= 1.1.3 - Reflected Cross Site Scripting (XSS) vulnerability — Pages Order 7.1 High2025-04-01
CVE-2025-31085 WordPress xili-language plugin <= 2.21.2 - Reflected Cross Site Scripting (XSS) vulnerability — xili-language 7.1 High2025-04-01
CVE-2025-31080 WordPress HTML Forms plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability — HTML Forms 7.1 High2025-04-01
CVE-2025-31081 WordPress Enable Media Replace plugin <= 4.1.5 - Reflected Cross Site Scripting (XSS) vulnerability — Enable Media Replace 7.1 High2025-04-01
CVE-2025-31086 WordPress Product Table by WBW plugin <= 2.1.4 - Reflected Cross Site Scripting (XSS) vulnerability — Product Table by WBW 7.1 High2025-04-01
CVE-2025-30905 WordPress Secure Copy Content Protection and Content Locking plugin <= 4.4.3 - Cross Site Scripting (XSS) vulnerability — Secure Copy Content Protection and Content Locking 7.1 High2025-04-01
CVE-2025-30906 WordPress Plugin Oficial – Getnet para WooCommerce plugin <= 1.7.3 - Reflected Cross Site Scripting (XSS) vulnerability — Plugin Oficial – Getnet para WooCommerce 7.1 High2025-04-01
CVE-2025-30913 WordPress Access Areas Plugin <= 1.5.19 - Reflected Cross Site Scripting (XSS) vulnerability — Access Areas 7.1 High2025-04-01
CVE-2025-31078 WordPress Small Package Quotes – Worldwide Express Edition plugin <= 5.2.18 - Reflected Cross Site Scripting (XSS) vulnerability — Small Package Quotes – Worldwide Express Edition 7.1 High2025-04-01
CVE-2025-30844 WordPress Watu Quiz plugin <= 3.4.2 - Reflected Cross Site Scripting (XSS) Vulnerability — Watu Quiz 7.1 High2025-04-01
CVE-2025-30852 WordPress Oracle Cards Lite plugin <= 1.2.1 - Reflected Cross Site Scripting (XSS) Vulnerability — Oracle Cards Lite 7.1 High2025-04-01
CVE-2025-30778 WordPress VForm plugin <= 3.1.9 - Reflected Cross Site Scripting (XSS) vulnerability — VPSUForm 7.1 High2025-04-01
CVE-2025-30554 WordPress Frizzly plugin <= 1.1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Frizzly 7.1 High2025-04-01
CVE-2025-31121 OpenEMR allows XSS in Patient Image feature — openemr 5.4AIMediumAI2025-04-01
CVE-2025-31895 WordPress ABC Notation Plugin <= 6.1.3 - Cross Site Scripting (XSS) vulnerability — ABC Notation 6.5 Medium2025-04-01
CVE-2025-31897 WordPress Arrow Custom Feed for Twitter plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability — Arrow Custom Feed for Twitter 6.5 Medium2025-04-01
CVE-2025-31894 WordPress Ebook Downloader plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — Ebook Downloader 6.5 Medium2025-04-01
CVE-2025-31892 WordPress WP Crowdfunding plugin <= 2.1.15 - Cross Site Scripting (XSS) vulnerability — WP Crowdfunding 6.5 Medium2025-04-01
CVE-2025-31891 WordPress Gosign – Posts Slider Block plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability — Gosign – Posts Slider Block 6.5 Medium2025-04-01
CVE-2025-31890 WordPress Simple Map No Api plugin <= 1.9 - Cross Site Scripting (XSS) vulnerability — Simple Map No Api 6.5 Medium2025-04-01
CVE-2025-31884 WordPress Norse Rune Oracle Plugin plugin <= 1.4.3 - Cross Site Scripting (XSS) vulnerability — Norse Rune Oracle Plugin 6.5 Medium2025-04-01
CVE-2025-31885 WordPress Hyperlink Group Block plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability — Hyperlink Group Block 6.5 Medium2025-04-01
CVE-2025-31883 WordPress WebinarPress plugin <= 1.33.28 - Cross Site Scripting (XSS) vulnerability — WebinarPress 5.9 Medium2025-04-01
CVE-2025-31875 WordPress FancyPost plugin <= 6.0.1 - Cross Site Scripting (XSS) vulnerability — FancyPost 6.5 Medium2025-04-01
CVE-2025-31874 WordPress WebberZone Snippetz plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability — WebberZone Snippetz 6.5 Medium2025-04-01
CVE-2025-31873 WordPress SheetDB plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability — SheetDB 6.5 Medium2025-04-01
CVE-2025-31869 WordPress Black Widgets For Elementor plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability — Black Widgets For Elementor 6.5 Medium2025-04-01
CVE-2025-31864 WordPress Beam me up Scotty – Back to Top Button plugin <= 1.0.23 - Cross Site Scripting (XSS) vulnerability — Beam me up Scotty 5.9 Medium2025-04-01
CVE-2025-31861 WordPress Perfect Font Awesome Integration Plugin <= 2.3 - Stored Cross Site Scripting (XSS) vulnerability — Perfect Font Awesome Integration 6.5 Medium2025-04-01

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.