CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21551 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-10722 | phpIPAM 跨站脚本漏洞 — phpipam/phpipam | 5.4 | - | 2025-03-20 |
| CVE-2025-0183 | GPT Academic 跨站脚本漏洞 — binary-husky/gpt_academic | 5.4 | - | 2025-03-20 |
| CVE-2024-7044 | Open WebUI 跨站脚本漏洞 — open-webui/open-webui | 6.1 | - | 2025-03-20 |
| CVE-2025-0192 | OpenUI 跨站脚本漏洞 — wandb/openui | 5.4 | - | 2025-03-20 |
| CVE-2024-9107 | chuanhuchatgpt 跨站脚本漏洞 — gaizhenbiao/chuanhuchatgpt | 5.4 | - | 2025-03-20 |
| CVE-2024-10719 | phpIPAM 跨站脚本漏洞 — phpipam/phpipam | 5.4 | - | 2025-03-20 |
| CVE-2024-4023 | FlatPress 跨站脚本漏洞 — flatpressblog/flatpress | 5.4 | - | 2025-03-20 |
| CVE-2024-9699 | FlatPress 跨站脚本漏洞 — flatpressblog/flatpress | 5.4 | - | 2025-03-20 |
| CVE-2024-10724 | phpIPAM 跨站脚本漏洞 — phpipam/phpipam | 5.4 | - | 2025-03-20 |
| CVE-2024-10723 | phpIPAM 跨站脚本漏洞 — phpipam/phpipam | 5.4 | - | 2025-03-20 |
| CVE-2024-8029 | PrivateGPT 跨站脚本漏洞 — imartinez/privategpt | 6.1 | - | 2025-03-20 |
| CVE-2024-10725 | phpIPAM 跨站脚本漏洞 — phpipam/phpipam | 5.4 | - | 2025-03-20 |
| CVE-2024-9900 | LocalAI 安全漏洞 — mudler/localai | 6.1 | - | 2025-03-20 |
| CVE-2024-11824 | dify 跨站脚本漏洞 — langgenius/dify | 5.4 | - | 2025-03-20 |
| CVE-2024-7990 | Open WebUI 跨站脚本漏洞 — open-webui/open-webui | 5.4 | - | 2025-03-20 |
| CVE-2024-12374 | Stable Diffusion web UI 跨站脚本漏洞 — automatic1111/stable-diffusion-webui | 5.4 | - | 2025-03-20 |
| CVE-2024-11441 | Serge 跨站脚本漏洞 — serge-chat/serge | 5.4 | - | 2025-03-20 |
| CVE-2025-2108 | WordPress plugin Xpro Addons For Elementor 跨站脚本漏洞 — Xpro Addons — 140+ Widgets for Elementor | 6.4 | Medium | 2025-03-20 |
| CVE-2025-27705 | Absolute Secure Access 安全漏洞 — Secure Access | 4.8 | - | 2025-03-19 |
| CVE-2025-27704 | Absolute Secure Access 安全漏洞 — Secure Access | 4.8 | - | 2025-03-19 |
| CVE-2025-2536 | Liferay Portal 跨站脚本漏洞 — Portal | 6.1 | - | 2025-03-19 |
| CVE-2024-53967 | Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager | 5.4 | Medium | 2025-03-19 |
| CVE-2024-53968 | Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager | 5.4 | Medium | 2025-03-19 |
| CVE-2024-53969 | Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager | 5.4 | Medium | 2025-03-19 |
| CVE-2024-53970 | Adobe Experience Manager 跨站脚本漏洞 — Adobe Experience Manager | 5.4 | Medium | 2025-03-19 |
| CVE-2025-29790 | Contao 跨站脚本漏洞 — contao | 4.6 | - | 2025-03-18 |
| CVE-2025-2491 | UJCMS 代码注入漏洞 — ujcms | 2.4 | Low | 2025-03-18 |
| CVE-2025-2490 | UJCMS 代码注入漏洞 — ujcms | 2.4 | Low | 2025-03-18 |
| CVE-2025-2495 | Sytel Softdial Contact Center(Sytel SCC) 跨站脚本漏洞 — Softdial Contact Center | 5.4 | - | 2025-03-18 |
| CVE-2025-0833 | Dassault Systèmes ENOVIA Collaborative Industry Innovator 安全漏洞 — ENOVIA Collaborative Industry Innovator | 8.7 | High | 2025-03-17 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21551 条 CVE 漏洞。