CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21535 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-5843 | WordPress plugin Brandfolder 跨站脚本漏洞 — Brandfolder – Digital Asset Management Simplified. | 6.4 | Medium | 2025-07-16 |
| CVE-2025-5845 | WordPress plugin Affiliate Reviews 跨站脚本漏洞 — Affiliate Reviews | 6.4 | Medium | 2025-07-16 |
| CVE-2025-2800 | WordPress plugin WP Event Manager 跨站脚本漏洞 — WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | 7.2 | High | 2025-07-16 |
| CVE-2025-2799 | WordPress plugin WP Event Manager 跨站脚本漏洞 — WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | 4.4 | Medium | 2025-07-16 |
| CVE-2025-6977 | WordPress plugin ProfileGrid 跨站脚本漏洞 — ProfileGrid – User Profiles, Groups and Communities | 6.1 | Medium | 2025-07-16 |
| CVE-2025-53903 | The Scratch Channel 跨站脚本漏洞 — the-scratch-channel.github.io | 6.1AI | MediumAI | 2025-07-15 |
| CVE-2025-33097 | IBM QRadar SIEM 跨站脚本漏洞 — QRadar SIEM | 6.4 | Medium | 2025-07-15 |
| CVE-2025-4369 | WordPress plugin Companion Auto Update 跨站脚本漏洞 — Companion Auto Update | 5.5 | Medium | 2025-07-15 |
| CVE-2025-7672 | JiranSoft CrossEditor4 安全漏洞 — CrossEditor4 | 4.3 | Medium | 2025-07-15 |
| CVE-2025-7367 | WordPress plugin Strong Testimonials 跨站脚本漏洞 — Strong Testimonials | 6.4 | Medium | 2025-07-15 |
| CVE-2025-53839 | DRACOON Branding Service 跨站脚本漏洞 — security-advisories | 4.0 | Medium | 2025-07-14 |
| CVE-2025-53835 | XWiki Rendering 安全漏洞 — xwiki-rendering | 9.1 | Critical | 2025-07-14 |
| CVE-2025-53834 | Caido 跨站脚本漏洞 — caido | 6.3 | Medium | 2025-07-14 |
| CVE-2025-53824 | WeGIA 跨站脚本漏洞 — WeGIA | 6.1AI | MediumAI | 2025-07-14 |
| CVE-2025-53822 | WeGIA 跨站脚本漏洞 — WeGIA | 6.5 | Medium | 2025-07-14 |
| CVE-2025-53820 | WeGIA 跨站脚本漏洞 — WeGIA | 6.5 | Medium | 2025-07-14 |
| CVE-2025-7601 | PHPGurukul Online Library Management System 代码注入漏洞 — Online Library Management System | 3.5 | Low | 2025-07-14 |
| CVE-2025-7618 | ASUSTOR ADM 安全漏洞 — ADM | 4.8AI | MediumAI | 2025-07-14 |
| CVE-2025-7380 | Asustor ADM 安全漏洞 — ADM | 5.4AI | MediumAI | 2025-07-14 |
| CVE-2025-7569 | OneBase 代码注入漏洞 — OneBase | 3.5 | Low | 2025-07-14 |
| CVE-2025-7567 | ShopXO 代码注入漏洞 — ShopXO | 4.3 | Medium | 2025-07-14 |
| CVE-2025-7554 | Sapido RB-1802 代码注入漏洞 — RB-1802 | 2.4 | Low | 2025-07-14 |
| CVE-2025-53865 | Roundup 跨站脚本漏洞 — Roundup | 6.4 | Medium | 2025-07-13 |
| CVE-2025-6068 | WordPress plugin FooGallery 跨站脚本漏洞 — Gallery by FooGallery | 6.4 | Medium | 2025-07-11 |
| CVE-2025-5530 | WordPress plugin WPC Smart Compare for WooCommerce 跨站脚本漏洞 — WPC Smart Compare for WooCommerce | 6.4 | Medium | 2025-07-11 |
| CVE-2025-6716 | WordPress plugin Contest Gallery 跨站脚本漏洞 — Contest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe | 6.4 | Medium | 2025-07-11 |
| CVE-2025-7435 | Live Helper Chat lhc-php-resque Extension 安全漏洞 — lhc-php-resque Extension | 3.5 | Low | 2025-07-11 |
| CVE-2025-41442 | Advantech iView 跨站脚本漏洞 — iView | 5.4 | Medium | 2025-07-10 |
| CVE-2025-53519 | Advantech iView 跨站脚本漏洞 — iView | 5.4 | Medium | 2025-07-10 |
| CVE-2025-53397 | Advantech iView 跨站脚本漏洞 — iView | 5.4 | Medium | 2025-07-10 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21535 条 CVE 漏洞。