CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21529 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-64984 | Kaspersky Endpoint Security和Kaspersky Industrial CyberSecurity for Linux Nodes 安全漏洞 — Kaspersky Endpoint Security | 6.1 | Medium | 2025-11-20 |
| CVE-2025-5092 | WordPress plugin theme 跨站脚本漏洞 — LightGallery WP | 6.4 | Medium | 2025-11-20 |
| CVE-2025-13450 | SourceCodester Online Shop Project 安全漏洞 — Online Shop Project | 3.5 | Low | 2025-11-20 |
| CVE-2025-13415 | EasyImages 代码注入漏洞 — EasyImages | 3.5 | Low | 2025-11-19 |
| CVE-2025-11884 | OpenText UCMDB 跨站脚本漏洞 — uCMDB | 4.8AI | MediumAI | 2025-11-19 |
| CVE-2025-13412 | CampCodes Retro Basketball Shoes Online Store 代码注入漏洞 — Retro Basketball Shoes Online Store | 2.4 | Low | 2025-11-19 |
| CVE-2025-65095 | Lookyloo 跨站脚本漏洞 — lookyloo | 6.1AI | MediumAI | 2025-11-19 |
| CVE-2025-65019 | Astro 跨站脚本漏洞 — astro | 5.4 | Medium | 2025-11-19 |
| CVE-2025-11963 | Saysis Starcities 跨站脚本漏洞 — StarCities | 5.4 | Medium | 2025-11-19 |
| CVE-2024-8528 | Automated Logic WebCtrl和Carrier i-Vu 安全漏洞 — WebCtrl | 6.1AI | MediumAI | 2025-11-19 |
| CVE-2025-13206 | WordPress plugin GiveWP – Donation Plugin and Fundraising Platform 跨站脚本漏洞 — GiveWP – Donation Plugin and Fundraising Platform | 7.2 | High | 2025-11-19 |
| CVE-2025-12484 | WordPress plugin Giveaways and Contests by RafflePress 跨站脚本漏洞 — Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and Social Followers | 7.2 | High | 2025-11-19 |
| CVE-2025-12878 | WordPress plugin FunnelKit 跨站脚本漏洞 — FunnelKit – Funnel Builder for WooCommerce Checkout | 6.4 | Medium | 2025-11-19 |
| CVE-2025-12710 | WordPress plugin Pet-Manager 跨站脚本漏洞 — Pet-Manager – Petfinder | 6.4 | Medium | 2025-11-19 |
| CVE-2025-13054 | WordPress plugin User Profile Builder 跨站脚本漏洞 — User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | 6.4 | Medium | 2025-11-19 |
| CVE-2025-6251 | WordPress plugin Royal Elementor Addons and Templates 跨站脚本漏洞 — Royal Addons for Elementor – Addons and Templates Kit for Elementor | 6.4 | Medium | 2025-11-19 |
| CVE-2025-65013 | LibreNMS 跨站脚本漏洞 — librenms | 6.2 | Medium | 2025-11-18 |
| CVE-2025-65012 | Kirby 跨站脚本漏洞 — kirby | 4.6AI | MediumAI | 2025-11-18 |
| CVE-2025-64325 | Emby Server 安全漏洞 — Emby.Security | 4.3AI | MediumAI | 2025-11-18 |
| CVE-2025-12761 | Drupal Simple multi step form 安全漏洞 — Simple multi step form | 6.1AI | MediumAI | 2025-11-18 |
| CVE-2025-13349 | SourceCodester Student Grades Management System 代码注入漏洞 — Student Grades Management System | 3.5 | Low | 2025-11-18 |
| CVE-2025-59117 | Windu CMS 跨站脚本漏洞 — Windu CMS | 4.8AI | MediumAI | 2025-11-18 |
| CVE-2025-59115 | Windu CMS 跨站脚本漏洞 — Windu CMS | 5.4AI | MediumAI | 2025-11-18 |
| CVE-2025-13343 | SourceCodester Interview Management System 代码注入漏洞 — Interview Management System | 3.5 | Low | 2025-11-18 |
| CVE-2025-41350 | Informática del Este WinPlus 跨站脚本漏洞 — WinPlus | 5.4AI | MediumAI | 2025-11-18 |
| CVE-2025-41349 | Informática del Este WinPlus 跨站脚本漏洞 — WinPlus | 5.4AI | MediumAI | 2025-11-18 |
| CVE-2025-12691 | WordPress plugin Photonic Gallery & Lightbox for Flickr, SmugMug & Others 跨站脚本漏洞 — Photonic Gallery & Lightbox for Flickr, SmugMug & Others | 6.4 | Medium | 2025-11-18 |
| CVE-2025-12457 | WordPress plugin Enable SVG, WebP, and ICO Upload 跨站脚本漏洞 — Enable SVG, WebP, and ICO Upload | 6.4 | Medium | 2025-11-18 |
| CVE-2025-12088 | WordPress plugin Meta Display Block 跨站脚本漏洞 — Meta Display Block | 6.4 | Medium | 2025-11-18 |
| CVE-2025-12079 | WordPress plugin WP Twitter Auto Publish 跨站脚本漏洞 — WP Twitter Auto Publish | 6.1 | Medium | 2025-11-18 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21529 条 CVE 漏洞。