CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21539 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-3894 | MegaBIP 跨站脚本漏洞 — MegaBIP | 4.8AI | MediumAI | 2025-05-23 |
| CVE-2025-4379 | Studio Fabryka DobryCMS 跨站脚本漏洞 — DobryCMS | 6.1AI | MediumAI | 2025-05-23 |
| CVE-2025-5096 | WordPress plugin TablePress 跨站脚本漏洞 — TablePress – Tables in WordPress made easy | 6.4 | Medium | 2025-05-23 |
| CVE-2025-4594 | WordPress plugin Tournamatch 跨站脚本漏洞 — Tournamatch | 6.4 | Medium | 2025-05-23 |
| CVE-2024-5962 | WSO2 API Manager和WSO2 Identity Server(IS) 跨站脚本漏洞 — WSO2 API Manager | 6.1 | Medium | 2025-05-22 |
| CVE-2024-7103 | WSO2 Identity Server(IS) 安全漏洞 — WSO2 Identity Server | 4.6 | Medium | 2025-05-22 |
| CVE-2024-13958 | ABB多款产品 跨站脚本漏洞 — ASPECT-Enterprise | 4.8 | Medium | 2025-05-22 |
| CVE-2024-13950 | ABB多款产品 跨站脚本漏洞 — ASPECT-Enterprise | 6.8 | Medium | 2025-05-22 |
| CVE-2025-48369 | Intermesh BV Group Office CRM 安全漏洞 — groupoffice | 5.4AI | MediumAI | 2025-05-22 |
| CVE-2025-48368 | Intermesh BV Group Office CRM 跨站脚本漏洞 — groupoffice | 6.1AI | MediumAI | 2025-05-22 |
| CVE-2025-48366 | Intermesh BV Group Office CRM 安全漏洞 — groupoffice | 5.4AI | MediumAI | 2025-05-22 |
| CVE-2025-4405 | WordPress plugin Hot Random Image 跨站脚本漏洞 — Hot Random Image | 4.9 | Medium | 2025-05-22 |
| CVE-2025-4123 | Grafana 安全漏洞 — Grafana | 7.6 | High | 2025-05-22 |
| CVE-2025-5062 | WordPress plugin WooCommerce 跨站脚本漏洞 — WooCommerce | 6.1 | Medium | 2025-05-22 |
| CVE-2025-2261 | TIBCO ActiveMatrix Administrator 安全漏洞 — TIBCO BPM Enterprise | 5.4AI | MediumAI | 2025-05-21 |
| CVE-2025-20250 | Cisco Webex 跨站脚本漏洞 — Cisco Webex Meetings | 6.1 | Medium | 2025-05-21 |
| CVE-2025-20247 | Cisco Webex 跨站脚本漏洞 — Cisco Webex Meetings | 6.1 | Medium | 2025-05-21 |
| CVE-2025-20246 | Cisco Webex 跨站脚本漏洞 — Cisco Webex Meetings | 6.1 | Medium | 2025-05-21 |
| CVE-2025-4415 | Drupal Piwik PRO 安全漏洞 — Piwik PRO | 6.1AI | MediumAI | 2025-05-21 |
| CVE-2025-1420 | Inedo ProGet 安全漏洞 — Proget | 4.8AI | MediumAI | 2025-05-21 |
| CVE-2025-1419 | Inedo ProGet 安全漏洞 — Proget | 4.8AI | MediumAI | 2025-05-21 |
| CVE-2025-4221 | WordPress plugin Animated Buttons 跨站脚本漏洞 — Animated Buttons | 6.4 | Medium | 2025-05-21 |
| CVE-2025-4219 | WordPress plugin DPEPress 跨站脚本漏洞 — DPEPress | 6.4 | Medium | 2025-05-21 |
| CVE-2025-3750 | WordPress plugin Network Posts Extended 跨站脚本漏洞 — Network Posts Extended | 6.4 | Medium | 2025-05-21 |
| CVE-2025-4217 | WordPress plugin WP YouTube Video Optimizer 跨站脚本漏洞 — WP YouTube Video Optimizer | 6.4 | Medium | 2025-05-21 |
| CVE-2025-4611 | WordPress plugin Slim SEO 跨站脚本漏洞 — Slim SEO – A Fast & Automated SEO Plugin For WordPress | 6.4 | Medium | 2025-05-21 |
| CVE-2025-3781 | WordPress plugin Raisely Donation Form 跨站脚本漏洞 — Raisely Donation Form | 6.4 | Medium | 2025-05-21 |
| CVE-2025-5013 | HkCms 安全漏洞 — HkCms | 4.3 | Medium | 2025-05-21 |
| CVE-2025-5011 | Hexo 安全漏洞 — hexo-boot | 2.4 | Low | 2025-05-21 |
| CVE-2025-48206 | TYPO3 安全漏洞 — ns backup extension | 6.1AI | MediumAI | 2025-05-21 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21539 条 CVE 漏洞。