CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21572 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-23614 | WordPress plugin WordPress Additional Logins 跨站脚本漏洞 — WordPress Additional Logins | 7.1 | High | 2025-02-03 |
| CVE-2025-23594 | WordPress plugin Google Map With Fancybox 跨站脚本漏洞 — Google Map With Fancybox | 7.1 | High | 2025-02-03 |
| CVE-2025-23599 | WordPress plugin eMarksheet 跨站脚本漏洞 — eMarksheet | 7.1 | High | 2025-02-03 |
| CVE-2025-23590 | WordPress plugin Dezdy 跨站脚本漏洞 — Dezdy | 7.1 | High | 2025-02-03 |
| CVE-2025-23582 | WordPress plugin Bulk Categories Assign 跨站脚本漏洞 — Bulk Categories Assign | 7.1 | High | 2025-02-03 |
| CVE-2025-23591 | WordPress plugin blu Logistics 跨站脚本漏洞 — blu Logistics | 7.1 | High | 2025-02-03 |
| CVE-2025-23593 | WordPress plugin EmailPress 跨站脚本漏洞 — EmailPress | 7.1 | High | 2025-02-03 |
| CVE-2025-23588 | WordPress plugin WOW Best CSS Compiler 跨站脚本漏洞 — WOW Best CSS Compiler | 7.1 | High | 2025-02-03 |
| CVE-2025-24781 | WordPress plugin WPJobBoard 跨站脚本漏洞 — WPJobBoard | 7.1 | High | 2025-02-03 |
| CVE-2025-23561 | WordPress plugin MLL Audio Player MP3 Ajax 跨站脚本漏洞 — MLL Audio Player MP3 Ajax | 6.5 | Medium | 2025-02-03 |
| CVE-2025-23491 | WordPress plugin VSTEMPLATE Creator 跨站脚本漏洞 — VSTEMPLATE Creator | 7.1 | High | 2025-02-03 |
| CVE-2025-23581 | WordPress plugin Demo User DZS 跨站脚本漏洞 — Demo User DZS | 6.5 | Medium | 2025-02-03 |
| CVE-2025-0972 | Zenvia 代码注入漏洞 — Movidesk | 3.5 | Low | 2025-02-03 |
| CVE-2025-25062 | Backdrop CMS 安全漏洞 — backdrop | 4.4 | Medium | 2025-02-03 |
| CVE-2025-25063 | Backdrop CMS 安全漏洞 — backdrop | 4.4 | Medium | 2025-02-03 |
| CVE-2025-0971 | Zenvia 代码注入漏洞 — Movidesk | 3.5 | Low | 2025-02-02 |
| CVE-2025-0961 | Code-Projects Job Recruitment 代码注入漏洞 — Job Recruitment | 3.5 | Low | 2025-02-01 |
| CVE-2024-13612 | WordPress plugin Better Messages 跨站脚本漏洞 — Better Messages – Live Chat, Chat Rooms, Real-Time Messaging & Private Messages | 6.4 | Medium | 2025-02-01 |
| CVE-2024-11829 | WordPress plugin The Plus Addons for Elementor 跨站脚本漏洞 — The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce | 6.4 | Medium | 2025-02-01 |
| CVE-2024-11780 | WordPress plugin Site Search 360 跨站脚本漏洞 — Site Search 360 | 6.4 | Medium | 2025-02-01 |
| CVE-2024-13547 | WordPress plugin aThemes Addons for Elementor 跨站脚本漏洞 — aThemes Addons for Elementor | 6.4 | Medium | 2025-02-01 |
| CVE-2024-49349 | IBM Financial Transaction Manager 跨站脚本漏洞 — Financial Transaction Manager for SWIFT Services for Multiplatforms | 6.1 | Medium | 2025-01-31 |
| CVE-2024-49339 | IBM Financial Transaction Manager 跨站脚本漏洞 — Financial Transaction Manager for SWIFT Services for Multiplatforms | 6.4 | Medium | 2025-01-31 |
| CVE-2024-47116 | IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator | 5.4 | Medium | 2025-01-31 |
| CVE-2024-49807 | IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator | 6.4 | Medium | 2025-01-31 |
| CVE-2024-40696 | IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator | 4.8 | Medium | 2025-01-31 |
| CVE-2024-47103 | IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator | 4.8 | Medium | 2025-01-31 |
| CVE-2025-0930 | TeamCal Neo 跨站脚本漏洞 — TeamCal Neo | 6.1 | Medium | 2025-01-31 |
| CVE-2024-12037 | WordPress plugin Post Form 跨站脚本漏洞 — Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for User Submissions (UGC) | 6.4 | Medium | 2025-01-31 |
| CVE-2024-13662 | WordPress plugin eHive Objects Image Grid 跨站脚本漏洞 — eHive Objects Image Grid | 6.4 | Medium | 2025-01-31 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21572 条 CVE 漏洞。