Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21551

21551 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-23737 WordPress Network-Favorites plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability — Network-Favorites 7.1 High2025-01-24
CVE-2025-23427 WordPress Redux Converter plugin <= 1.1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability — Redux Converter 7.1 High2025-01-24
CVE-2025-23522 WordPress HM Portfolio plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability — HM Portfolio 7.1 High2025-01-24
CVE-2025-23621 WordPress Causes – Donation plugin <= 1.0.01 - Reflected Cross Site Scripting (XSS) vulnerability — Causes – Donation Plugin 7.1 High2025-01-24
CVE-2024-12494 BMLT Meeting Map <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — BMLT Meeting Map 6.4 Medium2025-01-24
CVE-2024-13583 Simple Gallery with Filter <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Simple Gallery with Filter 6.4 Medium2025-01-24
CVE-2024-13659 Listamester <= 2.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting — Listamester 6.4 Medium2025-01-24
CVE-2025-0314 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLab 8.7 High2025-01-24
CVE-2025-23227 IBM Tivoli Application Dependency Discovery Manager cross-site scripting — Tivoli Application Dependency Discovery Manager 6.4 Medium2025-01-23
CVE-2025-23834 WordPress Links/Problem Reporter plugin <= 2.6.0 - Reflected Cross Site Scripting (XSS) vulnerability — Links/Problem Reporter 7.1 High2025-01-23
CVE-2025-23836 WordPress Custom Coming Soon Plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability — Custom Coming Soon 7.1 High2025-01-23
CVE-2025-23835 WordPress Legal + Plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Legal + 7.1 High2025-01-23
CVE-2025-23894 WordPress wp-flickr-press Plugin <= 2.6.4 - Reflected Cross Site Scripting (XSS) vulnerability — wp-flickr-press 7.1 High2025-01-23
CVE-2025-23960 WordPress Save & Import Image from URL Plugin <= 0.7 - Reflected Cross Site Scripting (XSS) vulnerability — Save & Import Image from URL 7.1 High2025-01-23
CVE-2025-23733 WordPress SC Simple Zazzle plugin <= 1.1.6 - Reflected Cross Site Scripting (XSS) vulnerability — SC Simple Zazzle 7.1 High2025-01-23
CVE-2025-23725 WordPress Accessibility Task Manager plugin <= 1.2.1 - Reflected Cross Site Scripting (XSS) vulnerability — Accessibility Task Manager 7.1 High2025-01-23
CVE-2025-23724 WordPress University Quizzes Online plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability — University Quizzes Online 7.1 High2025-01-23
CVE-2025-23730 WordPress FLX Dashboard Groups plugin <= 0.0.7 - Reflected Cross Site Scripting (XSS) vulnerability — FLX Dashboard Groups 7.1 High2025-01-23
CVE-2025-23727 WordPress AZ Content Finder plugin <= 0.1 - Reflected Cross Site Scripting (XSS) vulnerability — AZ Content Finder 7.1 High2025-01-23
CVE-2025-23729 WordPress XTRA Settings plugin <= 2.1.8 - Reflected Cross Site Scripting (XSS) vulnerability — XTRA Settings 7.1 High2025-01-23
CVE-2025-23634 WordPress Youtube Video Grid plugin <= 1.9 - Reflected Cross Site Scripting (XSS) vulnerability — Youtube Video Grid 7.1 High2025-01-23
CVE-2025-23723 WordPress Plestar Directory Listing plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Plestar Directory Listing 7.1 High2025-01-23
CVE-2025-23722 WordPress Mind3doM RyeBread Widgets plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — Mind3doM RyeBread Widgets 7.1 High2025-01-23
CVE-2025-23636 WordPress My Favorite Car plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability — My Favorite Car 7.1 High2025-01-23
CVE-2025-23629 WordPress Gallerio plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — Gallerio 7.1 High2025-01-23
CVE-2025-23624 WordPress WpDevTool plugin <= 0.1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WpDevTool 7.1 High2025-01-23
CVE-2025-23626 WordPress Kumihimo plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability — Kumihimo 7.1 High2025-01-23
CVE-2025-23545 WordPress WP Social Broadcast plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP Social Broadcast 7.1 High2025-01-23
CVE-2025-23628 WordPress GeoDigs plugin <= 3.4.1 - Reflected Cross Site Scripting (XSS) vulnerability — GeoDigs 7.1 High2025-01-23
CVE-2025-23544 WordPress StatPressCN plugin <= 1.9.1 - Reflected Cross Site Scripting (XSS) vulnerability — StatPressCN 7.1 High2025-01-23

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21551 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.