CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21534 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-9167 | SolidInvoice 代码注入漏洞 — SolidInvoice | 3.5 | Low | 2025-08-19 |
| CVE-2025-43744 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-33008 | IBM Sterling B2B Integrator和IBM Sterling File Gateway 跨站脚本漏洞 — Sterling B2B Integrator | 5.4 | Medium | 2025-08-19 |
| CVE-2025-55735 | FlaskBlog 安全漏洞 — FlaskBlog | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-43737 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-31988 | HCL Digital Experience 安全漏洞 — Digital Experience | 4.9 | Medium | 2025-08-19 |
| CVE-2025-55303 | Astro 安全漏洞 — astro | 7.2AI | HighAI | 2025-08-19 |
| CVE-2025-54881 | Mermaid 跨站脚本漏洞 — mermaid | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-54880 | Mermaid 安全漏洞 — mermaid | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-54411 | Discourse 跨站脚本漏洞 — discourse | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-52478 | n8n 跨站脚本漏洞 — n8n | 8.7 | High | 2025-08-19 |
| CVE-2025-9147 | getsemantic 安全漏洞 — getsemantic | 3.5 | Low | 2025-08-19 |
| CVE-2025-43738 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-9145 | Scada-LTS 代码注入漏洞 — Scada-LTS | 3.5 | Low | 2025-08-19 |
| CVE-2025-9144 | Scada-LTS 代码注入漏洞 — Scada-LTS | 3.5 | Low | 2025-08-19 |
| CVE-2025-9143 | Scada-LTS 代码注入漏洞 — Scada-LTS | 3.5 | Low | 2025-08-19 |
| CVE-2025-43740 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 5.4AI | MediumAI | 2025-08-19 |
| CVE-2025-9138 | Scada-LTS 代码注入漏洞 — Scada-LTS | 3.5 | Low | 2025-08-19 |
| CVE-2025-9137 | Scada-LTS 代码注入漏洞 — Scada-LTS | 3.5 | Low | 2025-08-19 |
| CVE-2025-8783 | WordPress plugin Contact Manager 跨站脚本漏洞 — Contact Manager | 4.4 | Medium | 2025-08-19 |
| CVE-2025-8567 | WordPress plugin Nexter Blocks 跨站脚本漏洞 — Nexter Blocks – Gutenberg Blocks, Page Builder & AI Website Builder | 6.4 | Medium | 2025-08-19 |
| CVE-2025-8622 | WordPress plugin Flexible Map 跨站脚本漏洞 — Flexible Map | 6.4 | Medium | 2025-08-19 |
| CVE-2025-7496 | WordPress plugin WPC Smart Compare for WooCommerce 跨站脚本漏洞 — WPC Smart Compare for WooCommerce | 6.4 | Medium | 2025-08-19 |
| CVE-2025-50891 | Adform Site Tracking 安全漏洞 — server-side backend for Site Tracking | 7.2 | High | 2025-08-19 |
| CVE-2025-54759 | Santesoft Sante PACS Server 跨站脚本漏洞 — Sante PACS Server | 6.1 | Medium | 2025-08-18 |
| CVE-2025-54862 | Santesoft Sante PACS Server 跨站脚本漏洞 — Sante PACS Server | 5.4 | Medium | 2025-08-18 |
| CVE-2025-9119 | Netis WF2419 代码注入漏洞 — WF2419 | 2.4 | Low | 2025-08-18 |
| CVE-2025-43731 | Liferay Portal和Liferay DXP 跨站脚本漏洞 — Portal | 5.4AI | MediumAI | 2025-08-18 |
| CVE-2025-55300 | Komari 跨站脚本漏洞 — komari | 8.8AI | HighAI | 2025-08-18 |
| CVE-2025-55296 | LibreNMS 跨站脚本漏洞 — librenms | 5.5 | Medium | 2025-08-18 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21534 条 CVE 漏洞。