Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31778 WordPress Donate Me Plugin <= 1.2.5 - Stored Cross-Site Scripting vulnerability — Donate Me 6.5 Medium2025-04-01
CVE-2025-31772 WordPress WP Modal Popup with Cookie Integration plugin <= 2.4 - Cross Site Scripting (XSS) vulnerability — WP Modal Popup with Cookie Integration 5.9 Medium2025-04-01
CVE-2025-31771 WordPress Team Members for Elementor Page Builder plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability — Team Members for Elementor Page Builder 6.5 Medium2025-04-01
CVE-2025-31770 WordPress Content Manager Light plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability — Content Manager Light 6.5 Medium2025-04-01
CVE-2025-31766 WordPress PhotoShelter for Photographers Blog Feed plugin <= 1.5.7 - Cross Site Scripting (XSS) vulnerability — PhotoShelter for Photographers Blog Feed Plugin 6.5 Medium2025-04-01
CVE-2025-31767 WordPress Post Custom Templates Lite plugin <= 1.14 - Stored Cross Site Scripting (XSS) vulnerability — Post Custom Templates Lite 6.5 Medium2025-04-01
CVE-2025-31764 WordPress Cache control by Cacholong plugin <= 5.4.1 - Cross Site Scripting (XSS) vulnerability — Cache control by Cacholong 5.9 Medium2025-04-01
CVE-2025-31762 WordPress Sheet2Site plugin <= 1.0.18 - Cross Site Scripting (XSS) vulnerability — Sheet2Site 6.5 Medium2025-04-01
CVE-2025-31761 WordPress Hypotext plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — Hypotext 6.5 Medium2025-04-01
CVE-2025-31760 WordPress SnapWidget Social Photo Feed Widget plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability — SnapWidget Social Photo Feed Widget 6.5 Medium2025-04-01
CVE-2025-31759 WordPress Boo Recipes plugin <= 2.4.1 - Cross Site Scripting (XSS) vulnerability — Boo Recipes 6.5 Medium2025-04-01
CVE-2025-31754 WordPress DobsonDev Shortcodes plugin <= 2.1.12 - Stored Cross Site Scripting (XSS) vulnerability — DobsonDev Shortcodes 6.5 Medium2025-04-01
CVE-2025-31749 WordPress HMH Footer Builder For Elementor plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — HMH Footer Builder For Elementor 6.5 Medium2025-04-01
CVE-2025-31750 WordPress Breaking News WP Plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability — Breaking News WP 5.9 Medium2025-04-01
CVE-2025-31748 WordPress Opal Portfolio Plugin <= 1.0.4 - Stored Cross Site Scripting (XSS) vulnerability — Opal Portfolio 6.5 Medium2025-04-01
CVE-2025-31747 WordPress WP Chrono plugin <= 1.5.4 - Cross Site Scripting (XSS) vulnerability — WP Chrono 6.5 Medium2025-04-01
CVE-2025-31744 WordPress Lightweight and Responsive Youtube Embed plugin <= 1.0.0 - Stored Cross Site Scripting (XSS) vulnerability — Lightweight and Responsive Youtube Embed 6.5 Medium2025-04-01
CVE-2025-31745 WordPress Subscription Form for Feedblitz Plugin <= 1.0.9 - Cross Site Scripting (XSS) vulnerability — Subscription Form for Feedblitz 6.5 Medium2025-04-01
CVE-2025-31742 WordPress Dima Take Action Plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability — Dima Take Action 5.9 Medium2025-04-01
CVE-2025-31743 WordPress Lightweight and Responsive Youtube Embed Plugin <= 1.0.0 - Stored Cross Site Scripting (XSS) vulnerability — Lightweight and Responsive Youtube Embed 6.5 Medium2025-04-01
CVE-2025-31740 WordPress News, Magazine and Blog Elements Plugin <= 1.3 - Stored Cross Site Scripting (XSS) vulnerability — News, Magazine and Blog Elements 6.5 Medium2025-04-01
CVE-2025-31741 WordPress Easy Magazine plugin <= 2.1.13 - Cross Site Scripting (XSS) vulnerability — Easy Magazine 6.5 Medium2025-04-01
CVE-2025-31737 WordPress Client Showcase plugin <= 1.2.0 - Stored Cross Site Scripting (XSS) vulnerability — Client Showcase 6.5 Medium2025-04-01
CVE-2025-31738 WordPress LeadQuizzes Plugin <= 1.1.0 - Stored Cross Site Scripting (XSS) vulnerability — LeadQuizzes 6.5 Medium2025-04-01
CVE-2025-31734 WordPress Simple Post Expiration plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — Simple Post Expiration 6.5 Medium2025-04-01
CVE-2025-31735 WordPress Footnotes for WordPress plugin <= 2016.1230 - Cross Site Scripting (XSS) Vulnerability — Footnotes for WordPress 6.5 Medium2025-04-01
CVE-2025-31733 WordPress WP Sitemap Plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability — WP Sitemap 6.5 Medium2025-04-01
CVE-2025-31731 WordPress Author Bio Shortcode Plugin <= 2.5.3 - Cross Site Scripting (XSS) vulnerability — Author Bio Shortcode 6.5 Medium2025-04-01
CVE-2025-31730 WordPress Marketer Addons Plugin <= 1.0.1 - Stored Cross Site Scripting (XSS) vulnerability — Marketer Addons 6.5 Medium2025-04-01
CVE-2025-2906 Contempo Real Estate Core <= 3.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Contempo Real Estate Core 6.4 Medium2025-04-01

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.