Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21548

21548 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-23635 WordPress ePermissions plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability — ePermissions 7.1 High2025-03-03
CVE-2025-23619 WordPress Catch Duplicate Switcher plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability — Catch Duplicate Switcher 7.1 High2025-03-03
CVE-2025-23600 WordPress Send to a Friend Addon plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability — Send to a Friend Addon 7.1 High2025-03-03
CVE-2025-23586 WordPress WP Post Category Notifications plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP Post Category Notifications 7.1 High2025-03-03
CVE-2025-23595 WordPress Page Health-O-Meter plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability — Page Health-O-Meter 7.1 High2025-03-03
CVE-2025-23585 WordPress Goo.gl Url Shorter plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — Goo.gl Url Shorter 7.1 High2025-03-03
CVE-2025-23587 WordPress all-in-one-box-login plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — all-in-one-box-login 7.1 High2025-03-03
CVE-2025-23579 WordPress DZS Ajaxer Lite plugin <= 1.04 - Cross Site Scripting (XSS) vulnerability — DZS Ajaxer Lite 6.5 Medium2025-03-03
CVE-2025-23570 WordPress WP Social Links plugin <= 0.3.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Social Links 7.1 High2025-03-03
CVE-2025-23575 WordPress DX Sales CRM plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — DX Sales CRM 7.1 High2025-03-03
CVE-2025-23584 WordPress Pin Locations on Map plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Pin Locations on Map 7.1 High2025-03-03
CVE-2025-23576 WordPress WP Intro.JS Plugin plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Intro.JS 7.1 High2025-03-03
CVE-2025-23555 WordPress Ui Slider Filter By Price plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — Ui Slider Filter By Price 7.1 High2025-03-03
CVE-2025-23556 WordPress Push Envoy Notifications plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability — Push Envoy Notifications 7.1 High2025-03-03
CVE-2025-23563 WordPress Explore pages plugin <= 1.01 - Reflected Cross Site Scripting (XSS) vulnerability — Explore pages 7.1 High2025-03-03
CVE-2025-23565 WordPress Wibstats plugin <= 0.5.5 - Reflected Cross Site Scripting (XSS) vulnerability — Wibstats 7.1 High2025-03-03
CVE-2025-23564 WordPress WP FixTag plugin <= v2.0.2 - Cross Site Scripting (XSS) vulnerability — WP FixTag 7.1 High2025-03-03
CVE-2025-23553 WordPress Userbase Access Control plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Userbase Access Control 7.1 High2025-03-03
CVE-2025-23549 WordPress Maniac SEO plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability — Maniac SEO 7.1 High2025-03-03
CVE-2025-23538 WordPress WP Contest plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP Contest 7.1 High2025-03-03
CVE-2025-23552 WordPress Texteller plugin <= 1.3.0 - Reflected Cross Site Scripting (XSS) vulnerability — Texteller 7.1 High2025-03-03
CVE-2025-23539 WordPress Awesome Hooks plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability — Awesome Hooks 7.1 High2025-03-03
CVE-2025-23526 WordPress Swift Calendar Online Appointment Scheduling plugin <= 1.3.3 - Reflected Cross Site Scripting (XSS) vulnerability — Swift Calendar Online Appointment Scheduling 7.1 High2025-03-03
CVE-2025-23521 WordPress Goodlayers Blocks plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — Goodlayers Blocks 7.1 High2025-03-03
CVE-2025-23524 WordPress ClickBank Storefront WordPress Plugin plugin <= 1.7 - Reflected Cross Site Scripting (XSS) vulnerability — ClickBank Storefront 7.1 High2025-03-03
CVE-2025-23520 WordPress Heartland Management Terminal plugin <= 1.3.0 - Reflected Cross Site Scripting (XSS) vulnerability — Heartland Management Terminal 7.1 High2025-03-03
CVE-2025-23536 WordPress Track Page Scroll plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Track Page Scroll 7.1 High2025-03-03
CVE-2025-23518 WordPress GoogleMapper plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability — GoogleMapper 7.1 High2025-03-03
CVE-2025-23519 WordPress G Web Pro Store Locator plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — G Web Pro Store Locator 7.1 High2025-03-03
CVE-2025-23516 WordPress Sale with Razorpay plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Sale with Razorpay 7.1 High2025-03-03

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21548 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.