Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21546

21546 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-0826 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Navigate in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0601 Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0600 Stored Cross-site Scripting (XSS) vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0599 Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0598 Stored Cross-site Scripting (XSS) vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0596 Stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry Innovator 8.7 High2025-03-17
CVE-2025-0595 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — 3DSwymer 8.7 High2025-03-17
CVE-2019-6697 Fortinet FortiGate 跨站脚本漏洞 — FortiOS 5.2 Medium2025-03-17
CVE-2025-27102 Agate vulnerable to HTML injection in user signup - Administrator phishing risk — agate 6.1 -2025-03-17
CVE-2021-26087 FortiWLC web界面 跨站脚本漏洞 — FortiWLC 4.2 Medium2025-03-17
CVE-2019-15706 Fortinet FortiOS 跨站脚本漏洞 — FortiProxy 4.0 Medium2025-03-17
CVE-2025-2377 SourceCodester Vehicle Management System confirmbooking.php cross site scripting — Vehicle Management System 3.5 Low2025-03-17
CVE-2025-2375 PHPGurukul Human Metapneumovirus Testing Management System Admin Profile Page profile.php cross site scripting — Human Metapneumovirus Testing Management System 3.5 Low2025-03-17
CVE-2025-2371 PHPGurukul Human Metapneumovirus Testing Management System Registered Mobile Number Search registered-user-testing.php cross site scripting — Human Metapneumovirus Testing Management System 3.5 Low2025-03-17
CVE-2025-2366 gougucms Add Department Page add cross site scripting — gougucms 2.4 Low2025-03-17
CVE-2025-2364 lenve VBlog ArticleService.java addNewArticle cross site scripting — VBlog 3.5 Low2025-03-17
CVE-2025-2361 Mercurial SCM Web Interface cross site scripting — SCM 4.3 Medium2025-03-17
CVE-2025-2354 VAM Virtual Airlines Manager index.php cross site scripting — Virtual Airlines Manager 4.3 Medium2025-03-17
CVE-2025-30143 Akamai ASE 安全漏洞 — App & API Protector 5.4 Medium2025-03-17
CVE-2025-2352 StarSea99 starsea-mall Backend save cross site scripting — starsea-mall 2.4 Low2025-03-16
CVE-2025-2340 otale Tale Blog Site Settings save saveOptions cross site scripting — Tale Blog 2.4 Low2025-03-16
CVE-2025-2335 Drivin Soluções API registerSchool cross site scripting — Soluções 3.5 Low2025-03-16
CVE-2025-26972 WordPress PrivateContent plugin <= 8.11.5 - Reflected Cross Site Scripting (XSS) vulnerability — PrivateContent 7.1 High2025-03-15
CVE-2025-26895 WordPress m1.DownloadList plugin <= 0.19 - Cross Site Scripting (XSS) vulnerability — m1.DownloadList 6.5 Medium2025-03-15
CVE-2025-26554 WordPress WP Discord Post Plugin <= 2.1.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP Discord Post 7.1 High2025-03-15
CVE-2025-26556 WordPress WP AntiDDOS Plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability — WP AntiDDOS 7.1 High2025-03-15
CVE-2025-26553 WordPress Pre Order Addon for WooCommerce plugin<= 1.0.7 - Reflected Cross-Site Scripting — Pre Order Addon for WooCommerce – Advance Order/Backorder Plugin 7.1 High2025-03-15
CVE-2025-26555 WordPress Debug-Bar-Extender Plugin <= 0.5 - Reflected Cross Site Scripting (XSS) vulnerability — Debug-Bar-Extender 7.1 High2025-03-15
CVE-2025-26548 WordPress Random Image Selector plugin <= 1.5.6 - Reflected Cross-Site Scripting vulnerability — Random Image Selector 7.1 High2025-03-15
CVE-2025-23744 WordPress Random Posts, Mp3 Player + ShareButton plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability — Random Posts, Mp3 Player + ShareButton 7.1 High2025-03-15

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21546 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.