CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21521 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2019-25397 | IPFire 跨站脚本漏洞 — IPFire | 6.1 | Medium | 2026-02-18 |
| CVE-2019-25396 | IPFire 跨站脚本漏洞 — IPFire | 6.1 | Medium | 2026-02-18 |
| CVE-2026-24746 | InvoicePlane 安全漏洞 — InvoicePlane | 5.7 | Medium | 2026-02-18 |
| CVE-2026-25500 | Rack 跨站脚本漏洞 — rack | 5.4 | Medium | 2026-02-18 |
| CVE-2026-1404 | WordPress plugin Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 跨站脚本漏洞 — Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | 6.1 | Medium | 2026-02-18 |
| CVE-2025-8308 | Key INFOREX 跨站脚本漏洞 — INFOREX- General Information Management System | 6.3 | Medium | 2026-02-18 |
| CVE-2025-14340 | Payara Server 安全漏洞 — Payara Server | 6.1AI | MediumAI | 2026-02-18 |
| CVE-2026-1441 | Graylog Web Interface 跨站脚本漏洞 — Graylog Web Interface | 6.1 | - | 2026-02-18 |
| CVE-2026-1440 | Graylog Web Interface 跨站脚本漏洞 — Graylog Web Interface | 6.1 | - | 2026-02-18 |
| CVE-2026-1439 | Graylog Web Interface 跨站脚本漏洞 — Graylog Web Interface | 6.1 | - | 2026-02-18 |
| CVE-2026-1438 | Graylog Web Interface 跨站脚本漏洞 — Graylog Web Interface | 6.1 | - | 2026-02-18 |
| CVE-2026-1437 | Graylog Web Interface 跨站脚本漏洞 — Graylog Web Interface | 6.1 | - | 2026-02-18 |
| CVE-2025-11185 | WordPress plugin Complianz 跨站脚本漏洞 — Complianz – GDPR/CCPA Cookie Consent | 6.4 | Medium | 2026-02-18 |
| CVE-2025-13727 | WordPress plugin Video Share VOD – Turnkey Video Site Builder Script 跨站脚本漏洞 — Video Share VOD – Turnkey Video Site Builder Script | 4.4 | Medium | 2026-02-18 |
| CVE-2026-1649 | WordPress plugin Community Events 跨站脚本漏洞 — Community Events | 4.4 | Medium | 2026-02-18 |
| CVE-2026-1941 | WordPress plugin WP Event Aggregator 跨站脚本漏洞 — WP Event Aggregator: Import Eventbrite events, Meetup events, social events and any iCal Events into Event Calendar | 6.4 | Medium | 2026-02-18 |
| CVE-2026-1943 | WordPress plugin YayMail – WooCommerce Email Customizer 跨站脚本漏洞 — YayMail – WooCommerce Email Customizer | 4.4 | Medium | 2026-02-18 |
| CVE-2026-2281 | WordPress plugin Private Comment 跨站脚本漏洞 — Private Comment | 4.4 | Medium | 2026-02-18 |
| CVE-2026-1666 | WordPress plugin Download Manager 跨站脚本漏洞 — Download Manager | 6.1 | Medium | 2026-02-18 |
| CVE-2026-1807 | WordPress plugin InteractiveCalculator for WordPress 跨站脚本漏洞 — InteractiveCalculator for WordPress | 6.4 | Medium | 2026-02-18 |
| CVE-2026-1304 | WordPress plugin Membership Plugin – Restrict Content for WordPress 跨站脚本漏洞 — Membership Plugin – Restrict Content | 4.4 | Medium | 2026-02-18 |
| CVE-2025-11737 | WordPress plugin VK All in One Expansion Unit 跨站脚本漏洞 — VK All in One Expansion Unit | 6.4 | Medium | 2026-02-18 |
| CVE-2025-12037 | WordPress plugin WP 404 Auto Redirect to Similar Post 跨站脚本漏洞 — WP 404 Auto Redirect to Similar Post | 4.4 | Medium | 2026-02-18 |
| CVE-2025-6460 | WordPress plugin Display During Conditional Shortcode 跨站脚本漏洞 — Display During Conditional Shortcode | 6.4 | Medium | 2026-02-18 |
| CVE-2026-1931 | WordPress plugin Rent Fetch 跨站脚本漏洞 — Rent Fetch | 7.2 | High | 2026-02-18 |
| CVE-2025-13959 | WordPress plugin Filestack 跨站脚本漏洞 — Filestack | 6.4 | Medium | 2026-02-18 |
| CVE-2025-62183 | Pega Platform 安全漏洞 — Pega Infinity | 4.8AI | MediumAI | 2026-02-17 |
| CVE-2025-33135 | IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 跨站脚本漏洞 — Financial Transaction Manager for ACH Services and Check Services for Multi-Platform | 6.1 | Medium | 2026-02-17 |
| CVE-2026-2622 | Blossom 代码注入漏洞 — Blossom | 3.5 | Low | 2026-02-17 |
| CVE-2026-26357 | Dell Unisphere for PowerMax 跨站脚本漏洞 — Unisphere for PowerMax 9.2.4.18 | 5.4 | Medium | 2026-02-17 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21521 条 CVE 漏洞。