CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21524 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2026-0555 | WordPress plugin Premmerce 跨站脚本漏洞 — Premmerce | 6.4 | Medium | 2026-02-07 |
| CVE-2026-1634 | WordPress plugin Subitem AL Slider 跨站脚本漏洞 — Subitem AL Slider | 6.1 | Medium | 2026-02-07 |
| CVE-2026-1608 | WordPress plugin Video Onclick 跨站脚本漏洞 — Video Onclick | 6.4 | Medium | 2026-02-07 |
| CVE-2026-1643 | WordPress plugin MP-Ukagaka 跨站脚本漏洞 — MP-Ukagaka | 6.1 | Medium | 2026-02-07 |
| CVE-2026-1570 | WordPress plugin Simple Bible Verse via Shortcode 跨站脚本漏洞 — Simple Bible Verse via Shortcode | 6.4 | Medium | 2026-02-07 |
| CVE-2025-12159 | WordPress plugin Bold Page Builder 跨站脚本漏洞 — Bold Page Builder | 6.4 | Medium | 2026-02-07 |
| CVE-2025-13463 | WordPress plugin Bold Page Builder 跨站脚本漏洞 — Bold Page Builder | 6.4 | Medium | 2026-02-07 |
| CVE-2025-15267 | WordPress plugin Bold Page Builder 跨站脚本漏洞 — Bold Page Builder | 6.4 | Medium | 2026-02-07 |
| CVE-2026-25516 | NiceGUI 跨站脚本漏洞 — nicegui | 6.1 | Medium | 2026-02-06 |
| CVE-2026-25581 | SCEditor 跨站脚本漏洞 — SCEditor | 5.4 | Medium | 2026-02-06 |
| CVE-2026-2064 | i-Educar 代码注入漏洞 — i-Educar | 3.5 | Low | 2026-02-06 |
| CVE-2026-25642 | HedgeDoc 跨站脚本漏洞 — hedgedoc | 4.3 | Medium | 2026-02-06 |
| CVE-2026-22254 | Winter 安全漏洞 — winter | - | - | 2026-02-06 |
| CVE-2026-25647 | lute 跨站脚本漏洞 — siyuan | 4.6 | Medium | 2026-02-06 |
| CVE-2026-24050 | Zulip 跨站脚本漏洞 — zulip | 5.4AI | MediumAI | 2026-02-06 |
| CVE-2026-24903 | OrcaStatLLM Researcher 跨站脚本漏洞 — OrcaStatLLM-Researcher | 5.4AI | MediumAI | 2026-02-06 |
| CVE-2026-1769 | Xerox CentreWare 安全漏洞 — CentreWare | 5.3 | Medium | 2026-02-06 |
| CVE-2026-23738 | Asterisk 跨站脚本漏洞 — asterisk | 3.5 | Low | 2026-02-06 |
| CVE-2019-25301 | Millhouse-Project 跨站脚本漏洞 — Millhouse Project | 6.4 | Medium | 2026-02-06 |
| CVE-2019-25294 | html5_snmp 跨站脚本漏洞 — html5_snmp | 6.1 | Medium | 2026-02-06 |
| CVE-2025-13523 | Mattermost Confluence Plugin 安全漏洞 — Mattermost Confluence Plugin | 7.7 | High | 2026-02-06 |
| CVE-2026-1293 | WordPress plugin Yoast SEO 跨站脚本漏洞 — Yoast SEO – Advanced SEO with real-time guidance and built-in AI | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1252 | WordPress plugin Events Listing Widget 跨站脚本漏洞 — Events Listing Widget | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1279 | WordPress plugin Employee Directory 跨站脚本漏洞 — Employee Directory – Staff Directory and Listing | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1909 | WordPress plugin WaveSurfer-WP 跨站脚本漏洞 — WaveSurfer-WP | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1401 | WordPress plugin Tune Library 跨站脚本漏洞 — Tune Library | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1808 | WordPress plugin Orange Confort+ 跨站脚本漏洞 — Orange Comfort+ accessibility toolbar for WordPress | 6.4 | Medium | 2026-02-06 |
| CVE-2026-1888 | WordPress plugin Docus – YouTube Video Playlist 跨站脚本漏洞 — Docus – YouTube Video Playlist | 6.4 | Medium | 2026-02-06 |
| CVE-2026-0521 | TYDAC AG MAP+ 安全漏洞 — MAP+ | 6.1AI | MediumAI | 2026-02-06 |
| CVE-2026-1971 | Edimax BR-6288ACL 代码注入漏洞 — BR-6288ACL | 2.4 | Low | 2026-02-06 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21524 条 CVE 漏洞。