CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21535 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-7845 | WordPress plugin Stratum 跨站脚本漏洞 — Stratum Widgets for Elementor | 6.4 | Medium | 2025-08-01 |
| CVE-2025-7725 | WordPress plugin Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery 跨站脚本漏洞 — Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | 7.2 | High | 2025-08-01 |
| CVE-2025-54589 | Copyparty 安全漏洞 — copyparty | 6.3 | Medium | 2025-07-31 |
| CVE-2025-8380 | Campcodes Online Hotel Reservation System 代码注入漏洞 — Online Hotel Reservation System | 3.5 | Low | 2025-07-31 |
| CVE-2025-40980 | Q2A Ultimate SEO 跨站脚本漏洞 — UltimatePOS | 5.4AI | MediumAI | 2025-07-31 |
| CVE-2025-24854 | Apache JSPWiki 安全漏洞 — Apache JSPWiki | 6.1AI | MediumAI | 2025-07-31 |
| CVE-2025-24853 | Apache JSPWiki 安全漏洞 — Apache JSPWiki | 4.7AI | MediumAI | 2025-07-31 |
| CVE-2025-36563 | Alfasado PowerCMS 跨站脚本漏洞 — PowerCMS | 6.1 | Medium | 2025-07-31 |
| CVE-2025-41391 | Alfasado PowerCMS 跨站脚本漏洞 — PowerCMS | 5.4 | Medium | 2025-07-31 |
| CVE-2025-7205 | WordPress plugin GiveWP 跨站脚本漏洞 — GiveWP – Donation Plugin and Fundraising Platform | 5.4 | Medium | 2025-07-31 |
| CVE-2025-8370 | Portábilis i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8369 | Portábilis i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8368 | Portábilis i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8367 | Portábilis i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8366 | i-Educar 代码注入漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-5720 | WordPress plugin Customer Reviews for WooCommerce 跨站脚本漏洞 — Customer Reviews for WooCommerce | 6.4 | Medium | 2025-07-31 |
| CVE-2025-8365 | Portábilis i-Educar 代码注入漏洞 — i-Educar | 3.5 | Low | 2025-07-31 |
| CVE-2025-8346 | i-Educar 安全漏洞 — i-Educar | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8340 | Code-Projects Intern Membership Management System 安全漏洞 — Intern Membership Management System | 4.3 | Medium | 2025-07-31 |
| CVE-2025-8337 | code-projects Simple Car Rental System 代码注入漏洞 — Simple Car Rental System | 2.4 | Low | 2025-07-30 |
| CVE-2025-47001 | Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager | 5.4 | Medium | 2025-07-30 |
| CVE-2025-5684 | WordPress plugin MetForm 跨站脚本漏洞 — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | 6.4 | Medium | 2025-07-29 |
| CVE-2025-53541 | Enalean Tuleap Community Edition和Enalean Tuleap Enterprise Edition 跨站脚本漏洞 — tuleap | 5.4 | Medium | 2025-07-29 |
| CVE-2025-6060 | DECE Software Geodi 跨站脚本漏洞 — Geodi | 5.4 | Medium | 2025-07-29 |
| CVE-2025-40686 | Human Resource Management System 跨站脚本漏洞 — Human Resource Management System | 6.1AI | MediumAI | 2025-07-29 |
| CVE-2025-40685 | Human Resource Management System 跨站脚本漏洞 — Human Resource Management System | 6.1AI | MediumAI | 2025-07-29 |
| CVE-2025-40684 | Human Resource Management System 跨站脚本漏洞 — Human Resource Management System | 6.1AI | MediumAI | 2025-07-29 |
| CVE-2025-40683 | Human Resource Management System 跨站脚本漏洞 — Human Resource Management System | 6.1AI | MediumAI | 2025-07-29 |
| CVE-2025-5587 | WordPress plugin Appzend 跨站脚本漏洞 — Appzend | 6.4 | Medium | 2025-07-29 |
| CVE-2025-6692 | WordPress plugin YouTube Embed 跨站脚本漏洞 — YouTube Embed – YouTube Gallery, Vimeo Gallery – WordPress Plugin | 6.4 | Medium | 2025-07-29 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21535 条 CVE 漏洞。