Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) — Vulnerability Class 21552

21552 vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-12112 Easy Form Builder <= 3.8.8 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting — Easy Form Builder by WhiteStudio — Drag & Drop Form Builder 6.4 Medium2025-01-08
CVE-2024-12521 Slotti Ajanvaraus <= 1.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Slotti Ajanvaraus 6.4 Medium2025-01-08
CVE-2025-22132 WeGIA has a Cross-Site Scripting (XSS) in File Upload Field — WeGIA 8.3 High2025-01-07
CVE-2025-0301 code-projects Online Book Shop subcat.php cross site scripting — Online Book Shop 3.5 Low2025-01-07
CVE-2025-22296 WordPress Hash Elements plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability — Hash Elements 6.5 Medium2025-01-07
CVE-2025-22334 WordPress Education LMS theme <= 0.0.7 - Stored Cross Site Scripting (XSS) vulnerability — Education LMS 6.5 Medium2025-01-07
CVE-2025-22354 WordPress Digi Store theme <= 1.1.4 - Cross Site Scripting (XSS) vulnerability — Digi Store 6.5 Medium2025-01-07
CVE-2025-22365 WordPress EMC2 Alert Boxes Plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability — EMC2 Alert Boxes 6.5 Medium2025-01-07
CVE-2025-22500 WordPress Alpha Price Table For Elementor plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability — Alpha Price Table For Elementor 6.5 Medium2025-01-07
CVE-2024-40747 [20250101] - Core - XSS vectors in module chromes — Joomla! CMS 6.1 -2025-01-07
CVE-2024-40748 [20250102] - Core - XSS vector in the id attribute of menu lists — Joomla! CMS 8.2 -2025-01-07
CVE-2024-56056 WordPress SimpleCharm Theme <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability — SimpleCharm 7.1 High2025-01-07
CVE-2025-22294 WordPress Custom Field For WP Job Manager plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability — Custom Field For WP Job Manager 7.1 High2025-01-07
CVE-2025-22335 WordPress Opencart Product in WP plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability — Opencart Product in WP 7.1 High2025-01-07
CVE-2025-22338 WordPress WP-tagMaker plugin <= 0.2.2 - Reflected Cross Site Scripting (XSS) vulnerability — WP-tagMaker 7.1 High2025-01-07
CVE-2025-22511 WordPress Slides & Presentations Plugin <= 0.0.39 - Cross Site Scripting (XSS) vulnerability — Slides & Presentations 6.5 Medium2025-01-07
CVE-2025-22515 WordPress Show Google Analytics widget plugin <= 1.5.4 - Cross Site Scripting (XSS) vulnerability — Show Google Analytics widget 6.5 Medium2025-01-07
CVE-2025-22516 WordPress Metadata SEO plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability — Metadata SEO 6.5 Medium2025-01-07
CVE-2025-22517 WordPress List Pages at Depth plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability — List Pages at Depth 6.5 Medium2025-01-07
CVE-2025-22518 WordPress Justified Image Gallery plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability — Justified Image Gallery 6.5 Medium2025-01-07
CVE-2025-22522 WordPress SingSong plugin <= 1.2 - CSRF to Stored XSS vulnerability — SingSong 7.1 High2025-01-07
CVE-2025-22524 WordPress فرم ساز فرم افزار Plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability — فرم ساز فرم افزار 6.5 Medium2025-01-07
CVE-2025-22525 WordPress Donation Block For PayPal Plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability — Donation Block For PayPal 6.5 Medium2025-01-07
CVE-2025-22528 WordPress Huurkalender WP Plugin <= 1.5.6 - Cross Site Scripting (XSS) vulnerability — Huurkalender WP 6.5 Medium2025-01-07
CVE-2025-22529 WordPress WE Blocks <= 1.3.5 - Cross Site Scripting (XSS) vulnerability — WE Blocks 6.5 Medium2025-01-07
CVE-2025-22530 WordPress 아임포트 결제버튼 생성 플러그인 plugin <= 1.1.19 - Cross Site Scripting (XSS) vulnerability — 아임포트 결제버튼 생성 플러그인 6.5 Medium2025-01-07
CVE-2025-22531 WordPress Urdu Formatter – Shamil plugin <= 0.1 - Cross Site Scripting (XSS) vulnerability — Urdu Formatter – Shamil 6.5 Medium2025-01-07
CVE-2025-22532 WordPress Simple Photo Sphere plugin <= 0.0.10 - Cross Site Scripting (XSS) vulnerability — Simple Photo Sphere 6.5 Medium2025-01-07
CVE-2025-22544 WordPress Mind Doodle Visual Sitemaps & Tasks plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability — Mind Doodle Visual Sitemaps & Tasks 6.5 Medium2025-01-07
CVE-2025-22545 WordPress iframe to embed plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability — iframe to embed 6.5 Medium2025-01-07

Vulnerabilities classified as CWE-79 (在Web页面生成时对输入的转义处理不恰当(跨站脚本)) represent 21552 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.