CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21529 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-65027 | Romm 代码问题漏洞 — romm | 7.6 | High | 2025-12-03 |
| CVE-2025-20385 | Splunk Cloud Platform和Splunk Enterprise 跨站脚本漏洞 — Splunk Enterprise | 2.4 | Low | 2025-12-03 |
| CVE-2025-13401 | WordPress plugin Autoptimize 跨站脚本漏洞 — Autoptimize | 6.4 | Medium | 2025-12-03 |
| CVE-2025-13448 | WordPress plugin CSSIgniter Shortcodes 跨站脚本漏洞 — CSSIgniter Shortcodes | 6.4 | Medium | 2025-12-03 |
| CVE-2025-66468 | Aimeos GrapesJS CMS 跨站脚本漏洞 — ai-cms-grapesjs | 7.7 | High | 2025-12-02 |
| CVE-2025-66460 | Lookyloo 跨站脚本漏洞 — lookyloo | 7.5AI | HighAI | 2025-12-02 |
| CVE-2025-66459 | Lookyloo 跨站脚本漏洞 — lookyloo | 6.1AI | MediumAI | 2025-12-02 |
| CVE-2025-66458 | Lookyloo 跨站脚本漏洞 — lookyloo | 6.1AI | MediumAI | 2025-12-02 |
| CVE-2025-13505 | Datateam Datactive 安全漏洞 — Datactive | 4.8 | Medium | 2025-12-02 |
| CVE-2025-13731 | WordPress plugin Nexter Extension – Site Enhancements Toolkit 跨站脚本漏洞 — Nexter Extension – Security, Performance, Code Snippets & Site Toolkit | 6.4 | Medium | 2025-12-02 |
| CVE-2025-40700 | IDI Eikon Governalia 跨站脚本漏洞 — Governalia | 6.1AI | MediumAI | 2025-12-02 |
| CVE-2025-13873 | ObjectPlanet Opinio 安全漏洞 — Opinio | 5.4AI | MediumAI | 2025-12-02 |
| CVE-2025-13007 | WordPress plugin WP Social Ninja 跨站脚本漏洞 — WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets | 6.1 | Medium | 2025-12-02 |
| CVE-2025-13387 | WordPress plugin Kadence WooCommerce Email Designer 跨站脚本漏洞 — Kadence WooCommerce Email Designer | 7.2 | High | 2025-12-02 |
| CVE-2025-13697 | WordPress plugin BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library 跨站脚本漏洞 — BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections & Template Library | 6.4 | Medium | 2025-12-02 |
| CVE-2025-66412 | Angular 跨站脚本漏洞 — angular | 6.1AI | MediumAI | 2025-12-01 |
| CVE-2025-66403 | FileRise 跨站脚本漏洞 — FileRise | 4.6 | Medium | 2025-12-01 |
| CVE-2025-66312 | Grav 跨站脚本漏洞 — grav | 5.4AI | MediumAI | 2025-12-01 |
| CVE-2025-66311 | Grav 跨站脚本漏洞 — grav | 5.4AI | MediumAI | 2025-12-01 |
| CVE-2025-66310 | Grav 跨站脚本漏洞 — grav | 5.4AI | MediumAI | 2025-12-01 |
| CVE-2025-66309 | Grav 跨站脚本漏洞 — grav | 6.1AI | MediumAI | 2025-12-01 |
| CVE-2025-66308 | Grav 跨站脚本漏洞 — grav | 5.4AI | MediumAI | 2025-12-01 |
| CVE-2025-13835 | WordPress plugin Arconix Shortcodes 跨站脚本漏洞 — Arconix Shortcodes | 6.5 | Medium | 2025-12-01 |
| CVE-2025-41070 | Sanoma Clickedu 跨站脚本漏洞 — Clickedu | 6.1AI | MediumAI | 2025-12-01 |
| CVE-2025-13802 | RestaurantWebsite 代码注入漏洞 — RestaurantWebsite | 4.3 | Medium | 2025-12-01 |
| CVE-2025-13795 | School Management System PHP & MYSQL 代码注入漏洞 — School Management System | 2.4 | Low | 2025-11-30 |
| CVE-2025-13793 | Ecommerce-Website 代码注入漏洞 — Ecommerce-Website | 4.3 | Medium | 2025-11-30 |
| CVE-2025-13784 | Skuul school management system 代码注入漏洞 — Skuul School Management System | 2.4 | Low | 2025-11-30 |
| CVE-2025-66421 | Tryton sao 跨站脚本漏洞 — sao | 5.4 | Medium | 2025-11-30 |
| CVE-2025-66420 | Tryton sao 跨站脚本漏洞 — sao | 5.4 | Medium | 2025-11-30 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21529 条 CVE 漏洞。