Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21538

21538 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-30899 WordPress User Registration plugin <= 4.0.3 - Cross Site Scripting (XSS) vulnerability — User Registration 5.9 Medium2025-03-27
CVE-2025-30898 WordPress افزونه حمل و نقل ووکامرس (پست پیشتاز و سفارشی، پیک موتوری) plugin <= 4.2.3 - Cross Site Scripting (XSS) vulnerability — افزونه حمل و نقل ووکامرس (پست پیشتاز و سفارشی، پیک موتوری) 6.5 Medium2025-03-27
CVE-2025-30893 WordPress LeadConnector plugin <= 3.0.2 - Cross Site Scripting (XSS) vulnerability — LeadConnector 6.5 Medium2025-03-27
CVE-2025-30873 WordPress Greenshift plugin <= 11.0.2 - Cross Site Scripting (XSS) vulnerability — Greenshift 6.5 Medium2025-03-27
CVE-2025-30867 WordPress SearchIQ plugin <= 4.7 - Cross Site Scripting (XSS) vulnerability — SearchIQ 6.5 Medium2025-03-27
CVE-2025-30860 WordPress Off-Canvas Sidebars & Menus (Slidebars) plugin <= 0.5.8.2 - Cross Site Scripting (XSS) Vulnerability — Off-Canvas Sidebars & Menus (Slidebars) 6.5 Medium2025-03-27
CVE-2025-30850 WordPress Dr. Flex plugin <= 2.0.0 - Cross Site Scripting (XSS) vulnerability — Dr. Flex 6.5 Medium2025-03-27
CVE-2025-30847 WordPress Novelist plugin <= 1.2.3 - Cross Site Scripting (XSS) Vulnerability — Novelist 5.9 Medium2025-03-27
CVE-2025-30838 WordPress Cozy Blocks plugin <= 2.1.6 - Cross Site Scripting (XSS) vulnerability — Cozy Blocks 6.5 Medium2025-03-27
CVE-2025-30836 WordPress LatePoint plugin <= 5.1.6 - Cross Site Scripting (XSS) vulnerability — LatePoint 6.5 Medium2025-03-27
CVE-2025-30832 WordPress Themify Event Post Plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability — Themify Event Post 6.5 Medium2025-03-27
CVE-2025-30826 WordPress IP Locator plugin <= 4.1.0 - Cross Site Scripting (XSS) vulnerability — IP Locator 6.5 Medium2025-03-27
CVE-2025-30818 WordPress jAlbum Bridge plugin <= 2.0.17 - Cross Site Scripting (XSS) vulnerability — jAlbum Bridge 6.5 Medium2025-03-27
CVE-2025-30813 WordPress Listamester plugin <= 2.3.5 - Cross Site Scripting (XSS) vulnerability — Listamester 6.5 Medium2025-03-27
CVE-2025-30812 WordPress SKT Addons for Elementor plugin <= 3.5 - Cross Site Scripting (XSS) vulnerability — SKT Addons for Elementor 6.5 Medium2025-03-27
CVE-2025-30800 WordPress Gum Elementor Addon plugin <= 1.3.10 - Cross Site Scripting (XSS) vulnerability — Gum Elementor Addon 6.5 Medium2025-03-27
CVE-2025-30799 WordPress WP Google Street View plugin <= 1.1.5 - Cross Site Scripting (XSS) vulnerability — WP Google Street View 5.9 Medium2025-03-27
CVE-2025-30792 WordPress Comment Approved Notifier Extended plugin <= 5.2 - Cross Site Scripting (XSS) vulnerability — Comment Approved Notifier Extended 5.9 Medium2025-03-27
CVE-2025-30789 WordPress Clearout Email Validator plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability — Clearout Email Validator 5.9 Medium2025-03-27
CVE-2025-30786 WordPress Quotes llama plugin <= 3.1.0 - Cross Site Scripting (XSS) Vulnerability — Quotes llama 6.5 Medium2025-03-27
CVE-2025-30779 WordPress Doneren met Mollie plugin <= 2.10.7 - Cross Site Scripting (XSS) Vulnerability — Doneren met Mollie 6.5 Medium2025-03-27
CVE-2025-30780 WordPress Audio Album plugin <= 1.5.0 - Cross Site Scripting (XSS) Vulnerability — Audio Album 6.5 Medium2025-03-27
CVE-2025-30776 WordPress Sitekit plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability — Sitekit 6.5 Medium2025-03-27
CVE-2025-30771 WordPress WP Cassify plugin <= 2.3.5 - Cross Site Scripting (XSS) Vulnerability — WP Cassify 6.5 Medium2025-03-27
CVE-2025-30770 WordPress Charitable plugin <= 1.8.4.7 - Cross Site Scripting (XSS) Vulnerability — Charitable 6.5 Medium2025-03-27
CVE-2025-30768 WordPress jAlbum Bridge plugin <= 2.0.18 - Cross Site Scripting (XSS) Vulnerability — jAlbum Bridge 6.5 Medium2025-03-27
CVE-2025-30766 WordPress Happy Addons for Elementor plugin <= 3.16.2 - Cross Site Scripting (XSS) Vulnerability — Happy Addons for Elementor 6.5 Medium2025-03-27
CVE-2025-30763 WordPress EO4WP plugin <= 1.0.8.4 - Cross Site Scripting (XSS) Vulnerability — EO4WP 6.5 Medium2025-03-27
CVE-2025-2685 TablePress – Tables in WordPress made easy <= 3.0.4 - Authenticated (Author+) Stored Cross-Site Scripting — TablePress – Tables in WordPress made easy 6.4 Medium2025-03-27
CVE-2025-31165 Cross Site Scripting in NightWolf Penetration Platform — NightWolf Penetration Platform 6.1AIMediumAI2025-03-27

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21538 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.