Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21546

21546 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-25035 Jalios JPlatform 10 Multiple Cross-Site Scripting (XSS) — JPlatform 7.3 High2025-03-21
CVE-2019-16151 Fortinet FortiOS 跨站脚本漏洞 — FortiOS 4.7 Medium2025-03-21
CVE-2025-2590 code-projects Human Resource Management System recruitment.go UpdateRecruitmentById cross site scripting — Human Resource Management System 2.4 Low2025-03-21
CVE-2025-2597 Reflected Cross-Site Scripting (XSS) vulnerability in ITIUM 6050 — ITIUM 6050 6.1 -2025-03-21
CVE-2025-2583 SimpleMachines SMF ManageNews.php cross site scripting — SMF 3.5 Low2025-03-21
CVE-2025-2582 SimpleMachines SMF ManageAttachments.php cross site scripting — SMF 3.5 Low2025-03-21
CVE-2024-50053 Stored XSS — ServiceDesk Plus 6.3 Medium2025-03-21
CVE-2025-30342 OpenSlides 安全漏洞 — OpenSlides 5.4 Medium2025-03-21
CVE-2025-30349 IMP 安全漏洞 — IMP 7.2 High2025-03-21
CVE-2025-1802 HT Mega – Absolute Addons For Elementor <= 2.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets — HT Mega Addons for Elementor – Elementor Widgets & Template Builder 6.4 Medium2025-03-20
CVE-2024-8017 Cross-site Scripting (XSS) in open-webui/open-webui — open-webui/open-webui 5.4 -2025-03-20
CVE-2024-8101 Stored XSS in aimhubio/aim — aimhubio/aim 5.4 -2025-03-20
CVE-2024-8556 Stored XSS in modelscope/agentscope — modelscope/agentscope 5.4 -2025-03-20
CVE-2024-7053 Session Fixation in open-webui/open-webui — open-webui/open-webui 8.0 -2025-03-20
CVE-2024-8400 Stored XSS in gaizhenbiao/chuanhuchatgpt — gaizhenbiao/chuanhuchatgpt 5.4 -2025-03-20
CVE-2024-12871 Stored Cross-site Scripting (XSS) in infiniflow/ragflow — infiniflow/ragflow 5.4 -2025-03-20
CVE-2024-10721 Store XSS in phpipam/phpipam — phpipam/phpipam 5.4 -2025-03-20
CVE-2024-10727 Cross-Site Scripting (XSS) in phpipam/phpipam — phpipam/phpipam 6.1 -2025-03-20
CVE-2024-11850 Stored XSS in langgenius/dify — langgenius/dify 5.4 -2025-03-20
CVE-2024-0640 Stored XSS in chatwoot/chatwoot — chatwoot/chatwoot 4.8 -2025-03-20
CVE-2025-0281 Stored Cross-Site Scripting (XSS) in lunary-ai/lunary — lunary-ai/lunary 5.4 -2025-03-20
CVE-2024-12870 Stored Cross-site Scripting (XSS) in infiniflow/ragflow — infiniflow/ragflow 6.1 -2025-03-20
CVE-2024-6986 Cross-site Scripting (XSS) in parisneo/lollms-webui — parisneo/lollms-webui 5.4 -2025-03-20
CVE-2024-10720 Stored Cross-site Scripting (XSS) in phpipam/phpipam — phpipam/phpipam 4.8 -2025-03-20
CVE-2024-8027 Stored Cross-Site Scripting (XSS) in netease-youdao/QAnything — netease-youdao/qanything 5.4 -2025-03-20
CVE-2024-10722 Stored Cross-site Scripting (XSS) in phpipam/phpipam — phpipam/phpipam 5.4 -2025-03-20
CVE-2025-0183 Stored XSS in binary-husky/gpt_academic — binary-husky/gpt_academic 5.4 -2025-03-20
CVE-2024-7044 Stored XSS in open-webui/open-webui — open-webui/open-webui 6.1 -2025-03-20
CVE-2025-0192 Stored Cross-site Scripting (XSS) in wandb/openui — wandb/openui 5.4 -2025-03-20
CVE-2024-9107 Stored XSS in gaizhenbiao/chuanhuchatgpt — gaizhenbiao/chuanhuchatgpt 5.4 -2025-03-20

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21546 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.