Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21536

21536 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31595 WordPress Timeline Event History plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability — Timeline Event History 6.5 Medium2025-03-31
CVE-2025-31592 WordPress Send E-mail plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability — Send E-mail 6.5 Medium2025-03-31
CVE-2025-31591 WordPress Exit Popup Free plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — Exit Popup Free 5.9 Medium2025-03-31
CVE-2025-31590 WordPress WP Date and Time Shortcode plugin <= 2.6.7 - Cross Site Scripting (XSS) vulnerability — WP Date and Time Shortcode 6.5 Medium2025-03-31
CVE-2025-31589 WordPress Ethiopian Calendar plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability — Ethiopian Calendar 6.5 Medium2025-03-31
CVE-2025-31587 WordPress Elfsight Testimonials Slider plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — Elfsight Testimonials Slider 5.9 Medium2025-03-31
CVE-2025-31586 WordPress Gallery – Photo Albums Plugin plugin <= 1.3.170 - Stored Cross Site Scripting (XSS) vulnerability — Gallery – Photo Albums Plugin 6.5 Medium2025-03-31
CVE-2025-31574 WordPress Custom Content Scrollbar plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability — Custom Content Scrollbar 6.5 Medium2025-03-31
CVE-2025-31567 WordPress Themesflat Addons For Elementor plugin <= 2.3.1 - Cross Site Scripting (XSS) vulnerability — themesflat-addons-for-elementor 6.5 Medium2025-03-31
CVE-2025-31562 WordPress Uptime Robot Plugin for WordPress plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability — Uptime Robot Plugin for WordPress 6.5 Medium2025-03-31
CVE-2025-31559 WordPress Custom Database Applications by Caspio plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability — Custom Database Applications by Caspio 6.5 Medium2025-03-31
CVE-2025-31557 WordPress OSM plugin <= 6.1.13 - Cross Site Scripting (XSS) vulnerability — OSM 6.5 Medium2025-03-31
CVE-2025-31556 WordPress IMPress for IDX Broker plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability — IMPress for IDX Broker 6.5 Medium2025-03-31
CVE-2025-31549 WordPress Fusion plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability — Fusion 6.5 Medium2025-03-31
CVE-2025-31543 WordPress Twice Commerce plugin <= 1.3.1 - Cross Site Scripting (XSS) vulnerability — Twice Commerce 6.5 Medium2025-03-31
CVE-2025-31538 WordPress Checklist plugin <= 1.1.9 - Cross Site Scripting (XSS) vulnerability — Checklist 6.5 Medium2025-03-31
CVE-2025-31535 WordPress Simple Owl Carousel plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability — Simple Owl Carousel 6.5 Medium2025-03-31
CVE-2025-31532 WordPress AtomChat plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability — AtomChat 6.5 Medium2025-03-31
CVE-2025-23995 WordPress Tantyyellow theme <= 1.0.0.5 - Reflected Cross Site Scripting (XSS) vulnerability — Tantyyellow 7.1 High2025-03-31
CVE-2025-31419 WordPress Churel plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability — Churel 6.5 Medium2025-03-31
CVE-2025-30963 WordPress JetSmartFilters plugin <= 3.6.3 - Cross Site Scripting (XSS) vulnerability — JetSmartFilters 6.5 Medium2025-03-31
CVE-2025-30961 WordPress Trackserver plugin <= 5.1.0 - Cross Site Scripting (XSS) vulnerability — Trackserver 6.5 Medium2025-03-31
CVE-2025-2072 Reflected Cross-Site Scripting (XSS) Vulnerability in FAST LTA Silent Brick WebUI — FAST LTA Silent Brick WebUI 6.1 -2025-03-31
CVE-2025-2981 Legrand SMS PowerView cross site scripting — SMS PowerView 3.5 Low2025-03-31
CVE-2025-3019 Cross-site scripting vulnerabilities in KNIME Business Hub web pages — KNIME Business Hub 6.1 -2025-03-31
CVE-2025-31414 WordPress Cost Calculator Builder plugin <= 3.2.65 - Cross Site Scripting (XSS) vulnerability — Cost Calculator Builder 6.5 Medium2025-03-31
CVE-2025-31412 WordPress JetProductGallery plugin <= 2.1.22 - Cross Site Scripting (XSS) vulnerability — JetProductGallery 6.5 Medium2025-03-31
CVE-2025-30987 WordPress JetBlocks For Elementor plugin <= 1.3.16 - Cross Site Scripting (XSS) vulnerability — JetBlocks For Elementor 6.5 Medium2025-03-31
CVE-2025-31043 WordPress JetSearch plugin <= 3.5.7 - Cross Site Scripting (XSS) vulnerability — JetSearch 6.5 Medium2025-03-31
CVE-2025-2979 WCMS Registration setregister cross site scripting — WCMS 2.4 Low2025-03-31

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21536 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.