CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21546 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-30664 | Zoom Workplace 安全漏洞 — Zoom Workplace Apps | 6.6 | Medium | 2025-05-14 |
| CVE-2025-47705 | Drupal IFrame Remove Filter 安全漏洞 — IFrame Remove Filter | 6.1AI | MediumAI | 2025-05-14 |
| CVE-2025-47704 | Drupal Klaro Cookie & Consent Management 安全漏洞 — Klaro Cookie & Consent Management | 6.1AI | MediumAI | 2025-05-14 |
| CVE-2025-47703 | Drupal COOKiES Consent Management 安全漏洞 — COOKiES Consent Management | 6.1AI | MediumAI | 2025-05-14 |
| CVE-2025-47702 | Drupal oEmbed Providers 安全漏洞 — oEmbed Providers | 6.1AI | MediumAI | 2025-05-14 |
| CVE-2024-56157 | iTop 跨站脚本漏洞 — iTop | 6.3 | Medium | 2025-05-14 |
| CVE-2024-10865 | OpenText Advance Authentication 跨站脚本漏洞 — Advance Authentication | 6.1AI | MediumAI | 2025-05-14 |
| CVE-2024-52290 | LF Edge eKuiper 安全漏洞 — ekuiper | 6.3 | Medium | 2025-05-14 |
| CVE-2025-30315 | Adobe Connect 跨站脚本漏洞 — Adobe Connect | 6.1 | Medium | 2025-05-13 |
| CVE-2025-30316 | Adobe Connect 跨站脚本漏洞 — Adobe Connect | 5.4 | Medium | 2025-05-13 |
| CVE-2025-30314 | Adobe Connect 跨站脚本漏洞 — Adobe Connect | 6.1 | Medium | 2025-05-13 |
| CVE-2025-43567 | Adobe Connect 跨站脚本漏洞 — Adobe Connect | 9.3 | Critical | 2025-05-13 |
| CVE-2024-51446 | Siemens Polarion 跨站脚本漏洞 — Polarion V2310 | 6.5 | Medium | 2025-05-13 |
| CVE-2025-4647 | Centreon 安全漏洞 — web | 8.4 | High | 2025-05-13 |
| CVE-2025-43006 | SAP Supplier Relationship Management 跨站脚本漏洞 — SAP Supplier Relationship Management (Master Data Management Catalog) | 6.1 | Medium | 2025-05-13 |
| CVE-2025-30009 | SAP Supplier Relationship Management 跨站脚本漏洞 — SAP Supplier Relationship Management (Live Auction Cockpit) | 6.1 | Medium | 2025-05-13 |
| CVE-2025-26662 | SAP Data Services Management Console 跨站脚本漏洞 — SAP Data Services Management Console | 4.4 | Medium | 2025-05-13 |
| CVE-2025-46825 | Kanboard 跨站脚本漏洞 — kanboard | 6.1AI | MediumAI | 2025-05-12 |
| CVE-2025-46749 | Schweitzer Engineering Laboratories多款产品 安全漏洞 — SEL Blueframe OS | 4.3 | Medium | 2025-05-12 |
| CVE-2025-47578 | WordPress plugin BNS Twitter Follow Button 跨站脚本漏洞 — BNS Twitter Follow Button | 6.5 | Medium | 2025-05-12 |
| CVE-2025-40627 | AbanteCart 跨站脚本漏洞 — AbanteCart | 6.1AI | MediumAI | 2025-05-12 |
| CVE-2025-40626 | AbanteCart 跨站脚本漏洞 — AbanteCart | 6.1AI | MediumAI | 2025-05-12 |
| CVE-2025-46729 | phpDVDProfiler 跨站脚本漏洞 — phpDVDProfiler | 4.7AI | MediumAI | 2025-05-12 |
| CVE-2025-41393 | Ricoh Web Image Monitor 跨站脚本漏洞 — Multiple laser printers and MFPs which implement Web Image Monitor | 6.1AI | MediumAI | 2025-05-12 |
| CVE-2025-4551 | ContiNew Admin 代码注入漏洞 — ContiNew Admin | 3.5 | Low | 2025-05-11 |
| CVE-2025-4547 | SourceCodester Web-based Pharmacy Product Management System 代码注入漏洞 — Web-based Pharmacy Product Management System | 2.4 | Low | 2025-05-11 |
| CVE-2025-47828 | H5P-Nodejs-library 安全漏洞 — H5P-Nodejs-library | 6.4 | Medium | 2025-05-11 |
| CVE-2025-4512 | Inetum IODAS 代码注入漏洞 — IODAS | 4.3 | Medium | 2025-05-10 |
| CVE-2025-3878 | WordPress plugin SMS Alert Order Notifications 跨站脚本漏洞 — SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery | 6.4 | Medium | 2025-05-10 |
| CVE-2025-2944 | WordPress plugin Jeg Elementor Kit 跨站脚本漏洞 — Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress | 6.4 | Medium | 2025-05-10 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21546 条 CVE 漏洞。