Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-49349 IBM Financial Transaction Manager cross-site scripting — Financial Transaction Manager for SWIFT Services for Multiplatforms 6.1 Medium2025-01-31
CVE-2024-49339 IBM Financial Transaction Manager cross-site scripting — Financial Transaction Manager for SWIFT Services for Multiplatforms 6.4 Medium2025-01-31
CVE-2024-47116 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B Integrator 5.4 Medium2025-01-31
CVE-2024-49807 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B Integrator 6.4 Medium2025-01-31
CVE-2024-40696 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B Integrator 4.8 Medium2025-01-31
CVE-2024-47103 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B Integrator 4.8 Medium2025-01-31
CVE-2025-0930 Reflected Cross-Site Scripting (XSS) vulnerability in TeamCal Neo — TeamCal Neo 6.1 Medium2025-01-31
CVE-2024-12037 Frontend Content Forms for User Submissions (UGC) <= 2.8.13 - Authenticated (Contributor+) Stored Cross-Site Scripting — Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) 6.4 Medium2025-01-31
CVE-2024-13662 eHive Objects Image Grid <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — eHive Objects Image Grid 6.4 Medium2025-01-31
CVE-2025-24718 WordPress WP Sessions Time Monitoring Full Automatic Plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Sessions Time Monitoring Full Automatic 7.1 High2025-01-31
CVE-2025-24608 WordPress GD Mail Queue Plugin <= 4.3 - Reflected Cross Site Scripting (XSS) vulnerability — GD Mail Queue 7.1 High2025-01-31
CVE-2025-24609 WordPress PORTONE 우커머스 결제 Plugin <= 3.2.4 - Reflected Cross Site Scripting (XSS) vulnerability — PORTONE 우커머스 결제 7.1 High2025-01-31
CVE-2025-24635 WordPress Paytm – Donation Plugin plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability — Paytm Payment Donation 7.1 High2025-01-31
CVE-2025-24632 WordPress Advanced Dynamic Pricing for WooCommerce Plugin <= 4.9.0 -Reflected Cross Site Scripting (XSS) vulnerability — Advanced Dynamic Pricing for WooCommerce 7.1 High2025-01-31
CVE-2025-24686 WordPress RegistrationMagic Plugin <= 6.0.3.3 - Reflected Cross Site Scripting (XSS) vulnerability — RegistrationMagic 7.1 High2025-01-31
CVE-2025-24710 WordPress Gwolle Guestbook plugin <= 4.7.1 - Reflected Cross Site Scripting (XSS) vulnerability — Gwolle Guestbook 7.1 High2025-01-31
CVE-2025-24551 WordPress Radio Buttons and Swatches for WooCommerce plugin <= 1.1.20 - Reflected Cross Site Scripting (XSS) vulnerability — Radio Buttons and Swatches for WooCommerce 7.1 High2025-01-31
CVE-2025-24560 WordPress Awesome Event Booking plugin <= 2.7.1 - Reflected Cross Site Scripting (XSS) vulnerability — Awesome Event Booking 7.1 High2025-01-31
CVE-2025-24563 WordPress Cleanup – Directory Listing & Classifieds plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability — Cleanup – Directory Listing & Classifieds WordPress Plugin 7.1 High2025-01-31
CVE-2025-24535 WordPress SKT Donation plugin <= 1.9 - Reflected Cross Site Scripting (XSS) vulnerability — SKT Donation 7.1 High2025-01-31
CVE-2025-24534 WordPress DPortfolio plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability — DPortfolio 7.1 High2025-01-31
CVE-2025-23596 WordPress Notifikácie.sk plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Notifikácie.sk 7.1 High2025-01-31
CVE-2025-23759 WordPress Affiliate Tools Việt Nam plugin <= 0.3.17 - Reflected Cross Site Scripting (XSS) vulnerability — Affiliate Tools Việt Nam 7.1 High2025-01-31
CVE-2025-23671 WordPress WP OpenSearch plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — WP OpenSearch 7.1 High2025-01-31
CVE-2025-23987 WordPress Designer plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability — Designer 6.5 Medium2025-01-31
CVE-2025-22332 WordPress CloudFlare(R) Cache Purge plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability — CloudFlare(R) Cache Purge 7.1 High2025-01-31
CVE-2025-22564 WordPress Pretty Url Plugin <= 1.5.4 - Reflected Cross Site Scripting (XSS) vulnerability — Pretty Url 7.1 High2025-01-31
CVE-2025-22341 WordPress Hide Login+ plugin <= 3.5.1 - Reflected Cross Site Scripting (XSS) vulnerability — Hide Login+ 7.1 High2025-01-31
CVE-2025-22757 WordPress CodeBard Help Desk plugin <= 1.1.2 - Cross Site Scripting (XSS) vulnerability — CodeBard Help Desk 6.5 Medium2025-01-31
CVE-2024-13157 MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar <= 5.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Podcast RSS Feed — MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar 6.4 Medium2025-01-31

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.