CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21532 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-59417 | Lobe Chat 跨站脚本漏洞 — lobe-chat | 8.2AI | HighAI | 2025-09-18 |
| CVE-2025-9992 | WordPress plugin Ghost Kit 跨站脚本漏洞 — Ghost Kit – Page Builder Blocks, Motion Effects & Extensions | 6.4 | Medium | 2025-09-18 |
| CVE-2025-0547 | Paraşüt Bizmu 跨站脚本漏洞 — Bizmu | 4.7 | Medium | 2025-09-18 |
| CVE-2025-10642 | chat_forum 代码注入漏洞 — chat_forum | 3.5 | Low | 2025-09-18 |
| CVE-2025-10632 | itsourcecode Online Petshop Management System 安全漏洞 — Online Petshop Management System | 3.5 | Low | 2025-09-18 |
| CVE-2025-10631 | itsourcecode Online Petshop Management System 安全漏洞 — Online Petshop Management System | 3.5 | Low | 2025-09-18 |
| CVE-2025-59415 | Frappe Learning 跨站脚本漏洞 — lms | 4.6 | Medium | 2025-09-17 |
| CVE-2025-10614 | itsourcecode E-Logbook with Health Monitoring System for COVID-19 代码注入漏洞 — E-Logbook with Health Monitoring System for COVID-19 | 4.3 | Medium | 2025-09-17 |
| CVE-2025-10606 | i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-09-17 |
| CVE-2025-10605 | i-Educar 安全漏洞 — i-Educar | 4.3 | Medium | 2025-09-17 |
| CVE-2025-0879 | Shopside App 跨站脚本漏洞 — Shopside App | 4.7 | Medium | 2025-09-17 |
| CVE-2025-0546 | MevzuatTR 安全漏洞 — MevzuatTR | 4.7 | Medium | 2025-09-17 |
| CVE-2025-8411 | Dokuzsoft E-Commerce Web Design Product 跨站脚本漏洞 — E-Commerce Web Design Product | 7.1 | High | 2025-09-17 |
| CVE-2025-10591 | i-Educar 代码注入漏洞 — i-Educar | 3.5 | Low | 2025-09-17 |
| CVE-2025-10590 | i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-09-17 |
| CVE-2025-0420 | Paraşüt 跨站脚本漏洞 — Paraşüt | 4.7 | Medium | 2025-09-17 |
| CVE-2025-0419 | Zirve Nova 跨站脚本漏洞 — Zirve Nova | 4.7 | Medium | 2025-09-17 |
| CVE-2025-9565 | WordPress plugin Blocksy Companion 跨站脚本漏洞 — Blocksy Companion | 6.4 | Medium | 2025-09-17 |
| CVE-2025-9203 | WordPress plugin Media Player Addons for Elementor 跨站脚本漏洞 — Media Player Addons for Elementor – Audio and Video Widgets for Elementor | 6.4 | Medium | 2025-09-17 |
| CVE-2025-10584 | i-Educar 代码注入漏洞 — i-Educar | 3.5 | Low | 2025-09-17 |
| CVE-2025-8153 | NEC UNIVERGE IX 安全漏洞 — UNIVERGE IX | 6.1AI | MediumAI | 2025-09-17 |
| CVE-2025-9851 | WordPress plugin Appointmind 跨站脚本漏洞 — Appointmind | 6.4 | Medium | 2025-09-17 |
| CVE-2025-8394 | WordPress plugin Productive Style 跨站脚本漏洞 — Productive Style – Optimisations & Content Publishing Support | 6.4 | Medium | 2025-09-17 |
| CVE-2025-10166 | WordPress plugin Social Media Shortcodes 跨站脚本漏洞 — Social Media Shortcodes | 6.4 | Medium | 2025-09-17 |
| CVE-2025-43804 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 6.1AI | MediumAI | 2025-09-16 |
| CVE-2025-10566 | CampCodes Grocery Sales and Inventory System 代码注入漏洞 — Grocery Sales and Inventory System | 4.3 | Medium | 2025-09-16 |
| CVE-2025-58174 | LDAP Account Manager 跨站脚本漏洞 — lam | 4.6 | Medium | 2025-09-16 |
| CVE-2025-8276 | Patika Global HumanSuite 安全漏洞 — HumanSuite | 4.3 | Medium | 2025-09-16 |
| CVE-2024-12796 | Workcube ERP 跨站脚本漏洞 — Workcube ERP | 5.3 | Medium | 2025-09-16 |
| CVE-2025-10546 | PPC 2K15X Router 跨站脚本漏洞 — PPC XPON ONT (Optical Network Terminal) 2K15X | 6.1AI | MediumAI | 2025-09-16 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21532 条 CVE 漏洞。