CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21536 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-5713 | iSoluçõesWEB SoluçõesCoop 代码注入漏洞 — iSoluçõesWEB | 3.5 | Low | 2025-06-06 |
| CVE-2025-5661 | Code-Projects Traffic Offense Reporting System 代码注入漏洞 — Traffic Offense Reporting System | 2.4 | Low | 2025-06-05 |
| CVE-2025-27754 | RSJoomla! RSBlog! 跨站脚本漏洞 — RSBlog component for Joomla | 5.4AI | MediumAI | 2025-06-05 |
| CVE-2025-30084 | RSJoomla! RSMail! 跨站脚本漏洞 — RSMail! component for Joomla | 5.4AI | MediumAI | 2025-06-05 |
| CVE-2025-5341 | WordPress plugin Forminator Forms 跨站脚本漏洞 — Forminator Forms – Contact Form, Payment Form & Custom Form Builder | 6.4 | Medium | 2025-06-05 |
| CVE-2025-5651 | Code-Projects Traffic Offense Reporting System 安全漏洞 — Traffic Offense Reporting System | 3.5 | Low | 2025-06-05 |
| CVE-2025-5628 | SourceCodester Food Menu Manager 安全漏洞 — Food Menu Manager | 3.5 | Low | 2025-06-05 |
| CVE-2025-32015 | FreshRSS 跨站脚本漏洞 — FreshRSS | 6.7 | Medium | 2025-06-04 |
| CVE-2025-31136 | FreshRSS 安全漏洞 — FreshRSS | 6.7 | Medium | 2025-06-04 |
| CVE-2025-20279 | Cisco Unified CCX 跨站脚本漏洞 — Cisco Unified Contact Center Express | 4.8 | Medium | 2025-06-04 |
| CVE-2025-20273 | Cisco Unified Intelligent Contact Management Enterprise 跨站脚本漏洞 — Cisco Unified Intelligent Contact Management Enterprise | 6.1 | Medium | 2025-06-04 |
| CVE-2025-5584 | PHPGurukul Hospital Management System 代码注入漏洞 — Hospital Management System | 2.4 | Low | 2025-06-04 |
| CVE-2025-27444 | RSJoomla RSform!Pro 安全漏洞 — RSform!Pro component for Joomla | 4.8AI | MediumAI | 2025-06-04 |
| CVE-2025-5539 | WordPress plugin WP Easy Contact 跨站脚本漏洞 — Simple Contact Form Plugin for WordPress – WP Easy Contact | 6.4 | Medium | 2025-06-04 |
| CVE-2025-5532 | WordPress plugin Campus Directory 跨站脚本漏洞 — Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress | 6.4 | Medium | 2025-06-04 |
| CVE-2025-5531 | WordPress plugin Employee Directory 跨站脚本漏洞 — Employee Directory – Staff & Team Directory | 6.4 | Medium | 2025-06-04 |
| CVE-2025-5543 | TOTOLINK X2000R 代码注入漏洞 — X2000R | 2.4 | Low | 2025-06-03 |
| CVE-2025-5542 | TOTOLINK X2000R 代码注入漏洞 — X2000R | 2.4 | Low | 2025-06-03 |
| CVE-2025-5523 | web-flash 安全漏洞 — web-flash | 3.5 | Low | 2025-06-03 |
| CVE-2025-5516 | TOTOLINK X2000R 安全漏洞 — X2000R | 2.4 | Low | 2025-06-03 |
| CVE-2025-5513 | shiyi-blog 代码注入漏洞 — shiyi-blog | 3.5 | Low | 2025-06-03 |
| CVE-2025-5508 | TOTOLINK A3002RU 安全漏洞 — A3002RU | 2.4 | Low | 2025-06-03 |
| CVE-2025-5507 | TOTOLINK A3002RU 代码注入漏洞 — A3002RU | 2.4 | Low | 2025-06-03 |
| CVE-2025-5506 | TOTOLINK A3002RU 代码注入漏洞 — A3002RU | 2.4 | Low | 2025-06-03 |
| CVE-2025-5505 | TOTOLINK A3002RU 代码注入漏洞 — A3002RU | 2.4 | Low | 2025-06-03 |
| CVE-2025-4671 | WordPress plugin Profile Builder 跨站脚本漏洞 — User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor | 6.4 | Medium | 2025-06-03 |
| CVE-2025-4205 | WordPress plugin Popup Maker 跨站脚本漏洞 — Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder | 6.4 | Medium | 2025-06-03 |
| CVE-2025-5340 | WordPress plugin Music Player for Elementor 跨站脚本漏洞 — Music Player for Elementor – Audio Player & Podcast Player | 6.4 | Medium | 2025-06-03 |
| CVE-2025-4392 | WordPress plugin Shared Files 跨站脚本漏洞 — Shared Files – Frontend File Upload Form & Secure File Sharing | 7.2 | High | 2025-06-03 |
| CVE-2025-5116 | WordPress plugin WP Plugin Info Card 跨站脚本漏洞 — WP Plugin Info Card | 6.4 | Medium | 2025-06-03 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21536 条 CVE 漏洞。