Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31860 WordPress WP AdCenter plugin <= 2.5.8 - Cross Site Scripting (XSS) vulnerability — WP AdCenter 6.5 Medium2025-04-01
CVE-2025-31857 WordPress Directorist AddonsKit for Elementor plugin <= 1.1.6 - Cross Site Scripting (XSS) vulnerability — Directorist AddonsKit for Elementor 6.5 Medium2025-04-01
CVE-2025-31855 WordPress SMM API plugin <= 6.0.31 - Cross Site Scripting (XSS) vulnerability — SMM API 6.5 Medium2025-04-01
CVE-2025-31853 WordPress Smartarget Popup Plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability — Smartarget Popup 5.9 Medium2025-04-01
CVE-2025-31851 WordPress Beds24 Online Booking plugin <= 2.0.27 - Cross Site Scripting (XSS) vulnerability — Beds24 Online Booking 6.5 Medium2025-04-01
CVE-2025-31850 WordPress PDF Generator Addon for Elementor Page Builder plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability — PDF Generator Addon for Elementor Page Builder 6.5 Medium2025-04-01
CVE-2025-31849 WordPress Nemesis All-in-One plugin <= 1.1.3 - Cross Site Scripting (XSS) vulnerability — Nemesis All-in-One 6.5 Medium2025-04-01
CVE-2025-31847 WordPress mFolio Lite plugin <= 1.2.3 - Cross Site Scripting (XSS) vulnerability — mFolio Lite 6.5 Medium2025-04-01
CVE-2025-31844 WordPress Magical Blocks plugin <= 1.0.12 - Cross Site Scripting (XSS) vulnerability — Magical Blocks 6.5 Medium2025-04-01
CVE-2025-31838 WordPress Eventbee RSVP Widget plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — Eventbee RSVP Widget 6.5 Medium2025-04-01
CVE-2025-31837 WordPress WP Proposals plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability — WP Proposals 5.9 Medium2025-04-01
CVE-2025-31835 WordPress WP Plugin Info Card plugin <= 5.3.0 - Cross Site Scripting (XSS) vulnerability — WP Plugin Info Card 6.5 Medium2025-04-01
CVE-2025-31829 WordPress ShopCred plugin <= 1.3.0 - Cross Site Scripting (XSS) vulnerability — ShopCred 6.5 Medium2025-04-01
CVE-2025-31823 WordPress WPoperation Elementor Addons plugin 1.1.9 - Cross Site Scripting (XSS) vulnerability — WPoperation Elementor Addons 6.5 Medium2025-04-01
CVE-2025-31818 WordPress ContentBot AI Writer plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability — ContentBot AI Writer 6.5 Medium2025-04-01
CVE-2025-31817 WordPress BlockWheels plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability — BlockWheels 6.5 Medium2025-04-01
CVE-2025-31815 WordPress Design Blocks plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability — Design Blocks 6.5 Medium2025-04-01
CVE-2025-31813 WordPress WPSHARE247 Elementor Addons plugin <= 2.5 - Cross Site Scripting (XSS) vulnerability — WPSHARE247 Elementor Addons 6.5 Medium2025-04-01
CVE-2025-31812 WordPress BuddyPress Members Only plugin <= 3.5.3 - Cross Site Scripting (XSS) vulnerability — BuddyPress Members Only 6.5 Medium2025-04-01
CVE-2025-31811 WordPress Planyo online reservation system plugin <= 3.1 - Cross Site Scripting (XSS) vulnerability — Planyo online reservation system 6.5 Medium2025-04-01
CVE-2025-31806 WordPress Webling plugin <= 3.9.0 - Cross Site Scripting (XSS) vulnerability — Webling 5.9 Medium2025-04-01
CVE-2025-31805 WordPress Gutena Kit plugin <= 2.0.7 - Cross Site Scripting (XSS) vulnerability — Gutena Kit – Gutenberg Blocks and Templates 6.5 Medium2025-04-01
CVE-2025-31804 WordPress Follow Us Badges plugin <= 3.1.11 - Cross Site Scripting (XSS) vulnerability — Follow Us Badges 6.5 Medium2025-04-01
CVE-2025-31803 WordPress Turisbook Booking System plugin <= 1.3.8 - Stored Cross Site Scripting (XSS) vulnerability — Turisbook Booking System 6.5 Medium2025-04-01
CVE-2025-31801 WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability — MX Time Zone Clocks 6.5 Medium2025-04-01
CVE-2025-31797 WordPress Sprout Clients plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability — Sprout Clients 6.5 Medium2025-04-01
CVE-2025-31793 WordPress Piotnet Forms plugin <= 1.0.30 - Cross Site Scripting (XSS) vulnerability — Piotnet Forms 5.9 Medium2025-04-01
CVE-2025-31792 WordPress Piotnet Forms plugin <= 1.0.30 - Cross Site Scripting (XSS) vulnerability — Piotnet Forms 5.9 Medium2025-04-01
CVE-2025-31790 WordPress Posten plugin <= 0.0.1 - Cross Site Scripting (XSS) vulnerability — Posten 6.5 Medium2025-04-01
CVE-2025-31783 WordPress Leartes TRY Exchange Rates Plugin <= 2.1 - Stored Cross Site Scripting (XSS) vulnerability — Leartes TRY Exchange Rates 6.5 Medium2025-04-01

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.