Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21548

21548 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-5888 Stored XSS in Rest Services API for a Toolbox published as GP Service — ArcGIS Server 4.8 Medium2025-03-03
CVE-2025-27500 Cross Site Scripting potential in Ziti Console — ziti-console 8.2 High2025-03-03
CVE-2025-27499 WeGIA has a stored Cross-Site Scripting (XSS) in 'processa_edicao_socio.php' via the 'socio_nome' parameter — WeGIA 5.4 -2025-03-03
CVE-2025-27420 WeGIA contains a Stored Cross-Site Scripting (XSS) in 'atendido_parentesco_adicionar.php' via the 'descricao' parameter — WeGIA 5.4 -2025-03-03
CVE-2025-27418 WeGIA contains a Stored Cross-Site Scripting (XSS) in 'adicionar_tipo_atendido.php' via the 'tipo' parameter — WeGIA 5.4 -2025-03-03
CVE-2025-0555 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLab 7.7 High2025-03-03
CVE-2025-27417 WeGIA Contains a Stored Cross-Site Scripting (XSS) in 'adicionar_status_atendido.php' via the 'status' parameter — WeGIA 5.4 -2025-03-03
CVE-2024-54179 IBM Business Automation Workflow cross-site scripting — Business Automation Workflow 5.4 Medium2025-03-03
CVE-2025-26984 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.8 - Reflected Cross Site Scripting (XSS) vulnerability — SMS Alert Order Notifications 7.1 High2025-03-03
CVE-2025-26994 WordPress Zigaform – Price Calculator & Cost Estimation Form Builder Lite plugin <= 7.4.2 - Cross Site Scripting (XSS) vulnerability — Zigaform – Price Calculator & Cost Estimation Form Builder Lite 7.1 High2025-03-03
CVE-2025-26989 WordPress Zigaform – Form Builder Lite plugin <= 7.4.2 - Cross Site Scripting (XSS) vulnerability — Zigaform 7.1 High2025-03-03
CVE-2025-26917 WordPress WP Templata plugin <= 1.0.7 - Reflected Cross Site Scripting (XSS) vulnerability — WP Templata 7.1 High2025-03-03
CVE-2025-26879 WordPress s2Member Plugin <= 241216 - Reflected Cross Site Scripting (XSS) vulnerability — s2Member 7.1 High2025-03-03
CVE-2025-26918 WordPress Small Package Quotes – Unishippers Edition plugin <= 2.4.9 - Reflected Cross Site Scripting (XSS) vulnerability — Small Package Quotes – Unishippers Edition 7.1 High2025-03-03
CVE-2025-26914 WordPress Variable Inspector plugin <= 2.6.2 - Reflected Cross Site Scripting (XSS) vulnerability — Variable Inspector 7.1 High2025-03-03
CVE-2025-27275 WordPress WOO Codice Fiscale plugin <= 1.6.3 - Reflected Cross Site Scripting (XSS) vulnerability — WOO Codice Fiscale 7.1 High2025-03-03
CVE-2025-27278 WordPress AcuGIS Leaflet Maps Plugin <= 5.1.1.0 - Multiple Cross Site Scripting (XSS) vulnerabilities — AcuGIS Leaflet Maps 7.1 High2025-03-03
CVE-2025-27273 WordPress Affiliate Links Manager Plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Affiliate Links Manager 5.8 Medium2025-03-03
CVE-2025-27279 WordPress Flashfader Plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability — Flashfader 7.1 High2025-03-03
CVE-2025-27271 WordPress DB Tables Import/Export Plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — DB Tables Import/Export 7.1 High2025-03-03
CVE-2025-27269 WordPress .htaccess Login block Plugin <= 0.9a - Reflected Cross Site Scripting (XSS) vulnerability — .htaccess Login block 7.1 High2025-03-03
CVE-2025-26587 WordPress sidebarTabs Plugin <= 3.1 - Reflected Cross Site Scripting (XSS) vulnerability — sidebarTabs 7.1 High2025-03-03
CVE-2025-26588 WordPress TTT Crop Plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — TTT Crop 7.1 High2025-03-03
CVE-2025-26589 WordPress IE CSS3 Support Plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — IE CSS3 Support 7.1 High2025-03-03
CVE-2025-26586 WordPress Events Planner Plugin <= 1.3.10 - Reflected Cross Site Scripting (XSS) vulnerability — Events Planner 7.1 High2025-03-03
CVE-2025-26585 WordPress DL Leadback Plugin <= 1.2.1 - Reflected Cross Site Scripting (XSS) vulnerability — DL Leadback 7.1 High2025-03-03
CVE-2025-26563 WordPress Rocket Mobile Plugin <= 0.4.2 - Cross Site Scripting (XSS) vulnerability — Mobile 7.1 High2025-03-03
CVE-2025-26557 WordPress ViperBar Plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability — ViperBar 7.1 High2025-03-03
CVE-2025-25170 WordPress Migrate Posts Plugin <=1.0 - Post Based Cross Site Scripting (XSS) vulnerability — Migrate Posts 7.1 High2025-03-03
CVE-2025-25161 WordPress WP Find Your Nearest Plugin <= 0.3.1 - CSRF to Settings Change vulnerability — WP Find Your Nearest 7.1 High2025-03-03

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21548 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.