CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21551 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-2191 | Claro A7600-A1 代码注入漏洞 — A7600-A1 | 2.4 | Low | 2025-03-11 |
| CVE-2025-1434 | Areal Topkapi 跨站脚本漏洞 — Topkapi Vision Webserv2 | 6.1 | Medium | 2025-03-11 |
| CVE-2024-13413 | WordPress plugin ProductDyno 跨站脚本漏洞 — ProductDyno | 6.1 | Medium | 2025-03-11 |
| CVE-2025-27434 | SAP Commerce 跨站脚本漏洞 — SAP Commerce (Swagger UI) | 8.8 | High | 2025-03-11 |
| CVE-2025-27431 | SAP NetWeaver Application Server Java 跨站脚本漏洞 — SAP NetWeaver Application Server Java | 5.4 | Medium | 2025-03-11 |
| CVE-2025-26659 | SAP NetWeaver Application Server 跨站脚本漏洞 — SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) | 6.1 | Medium | 2025-03-11 |
| CVE-2025-25245 | SAP BusinessObjects Business Intelligence Platform 跨站脚本漏洞 — SAP BusinessObjects Business Intelligence Platform (Web Intelligence) | 5.4 | Medium | 2025-03-11 |
| CVE-2025-25242 | SAP NetWeaver Application Server 跨站脚本漏洞 — SAP NetWeaver Application Server ABAP | 6.1 | Medium | 2025-03-11 |
| CVE-2025-0062 | SAP Business Objects Business Intelligence Platform 跨站脚本漏洞 — SAP BusinessObjects Business Intelligence Platform | 4.7 | Medium | 2025-03-11 |
| CVE-2024-52812 | LF Edge eKuiper 跨站脚本漏洞 — ekuiper | 5.4 | Medium | 2025-03-10 |
| CVE-2024-13919 | Laravel Framework 跨站脚本漏洞 — Laravel Framework | 8.0 | High | 2025-03-10 |
| CVE-2024-13918 | Laravel Framework 跨站脚本漏洞 — Laravel Framework | 8.0 | High | 2025-03-10 |
| CVE-2025-2150 | HGiga C&Cm@il 跨站脚本漏洞 — C&Cm@il | 5.4 | Medium | 2025-03-10 |
| CVE-2025-27924 | Nintex Automation 跨站脚本漏洞 — Automation | 5.4 | Medium | 2025-03-10 |
| CVE-2025-2133 | ftcms 代码注入漏洞 — ftcms | 2.4 | Low | 2025-03-09 |
| CVE-2025-2131 | XunRuiCMS 代码注入漏洞 — XunRuiCMS | 2.4 | Low | 2025-03-09 |
| CVE-2025-2130 | OpenXE 代码注入漏洞 — OpenXE | 3.5 | Low | 2025-03-09 |
| CVE-2025-2127 | JoomlaUX JUX Real Estate 代码注入漏洞 — JUX Real Estate | 4.3 | Medium | 2025-03-09 |
| CVE-2025-2124 | Control iD RHiD 代码注入漏洞 — RH iD | 3.5 | Low | 2025-03-09 |
| CVE-2025-2123 | GeSHi 代码注入漏洞 — GeSHi | 3.5 | Low | 2025-03-09 |
| CVE-2024-13675 | WordPress plugin SlingBlocks 跨站脚本漏洞 — SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) | 6.4 | Medium | 2025-03-08 |
| CVE-2025-1664 | WordPress plugin Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates 跨站脚本漏洞 — Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns | 6.4 | Medium | 2025-03-08 |
| CVE-2024-13649 | WordPress plugin 140+ Widgets | Xpro Addons For Elementor – FREE 跨站脚本漏洞 — Xpro Addons — 140+ Widgets for Elementor | 6.4 | Medium | 2025-03-08 |
| CVE-2025-1783 | WordPress plugin Gallery Styles 跨站脚本漏洞 — Gallery Styles | 6.4 | Medium | 2025-03-08 |
| CVE-2025-1324 | WordPress plugin WP-Recall 跨站脚本漏洞 — WP-Recall – Registration, Profile, Commerce & More | 6.4 | Medium | 2025-03-08 |
| CVE-2025-1287 | WordPress plugin The Plus Addons for Elementor 跨站脚本漏洞 — The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce | 6.4 | Medium | 2025-03-08 |
| CVE-2024-12119 | WordPress plugin FooGallery 跨站脚本漏洞 — Gallery by FooGallery | 6.4 | Medium | 2025-03-08 |
| CVE-2024-12460 | WordPress plugin Years Since – Timeless Texts 跨站脚本漏洞 — Years Since – Timeless Texts | 6.4 | Medium | 2025-03-08 |
| CVE-2025-1261 | WordPress plugin HT Mega 跨站脚本漏洞 — HT Mega Addons for Elementor – Elementor Widgets & Template Builder | 6.4 | Medium | 2025-03-08 |
| CVE-2025-27518 | Cognita 跨站脚本漏洞 — cognita | 8.1 | - | 2025-03-07 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21551 条 CVE 漏洞。