CWE-79 在Web页面生成时对输入的转义处理不恰当(跨站脚本) 类弱点 21529 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2026-1161 | hrms 代码注入漏洞 — hrms | 3.5 | Low | 2026-01-19 |
| CVE-2026-21618 | Hexpm 安全漏洞 — hexpm | 6.1AI | MediumAI | 2026-01-19 |
| CVE-2026-1151 | mpay 代码注入漏洞 — mpay | 2.4 | Low | 2026-01-19 |
| CVE-2026-1147 | SourceCodester Patients Waiting Area Queue Management System 代码注入漏洞 — Patients Waiting Area Queue Management System | 3.5 | Low | 2026-01-19 |
| CVE-2026-1146 | SourceCodester Patients Waiting Area Queue Management System 代码注入漏洞 — Patients Waiting Area Queue Management System | 3.5 | Low | 2026-01-19 |
| CVE-2026-1136 | BootDo 代码注入漏洞 — BootDo | 3.5 | Low | 2026-01-19 |
| CVE-2026-1135 | itsourcecode Society Management System 代码注入漏洞 — Society Management System | 4.3 | Medium | 2026-01-19 |
| CVE-2026-1134 | itsourcecode Society Management System 代码注入漏洞 — Society Management System | 4.3 | Medium | 2026-01-19 |
| CVE-2026-23525 | 1Panel 跨站脚本漏洞 — 1Panel | 6.4 | Medium | 2026-01-18 |
| CVE-2026-1049 | LigeroSmart 代码注入漏洞 — LigeroSmart | 3.5 | Low | 2026-01-17 |
| CVE-2026-1048 | LigeroSmart 代码注入漏洞 — LigeroSmart | 3.5 | Low | 2026-01-17 |
| CVE-2025-8615 | WordPress plugin CubeWP 跨站脚本漏洞 — CubeWP Framework | 6.4 | Medium | 2026-01-17 |
| CVE-2026-0725 | WordPress plugin Integrate Dynamics 365 CRM 跨站脚本漏洞 — Integrate Dynamics 365 CRM | 4.4 | Medium | 2026-01-17 |
| CVE-2026-0691 | WordPress plugin CM E-Mail Blacklist – Simple email filtering for safer registration 跨站脚本漏洞 — CM E-Mail Blacklist – Simple email filtering for safer registration | 4.4 | Medium | 2026-01-17 |
| CVE-2026-0833 | WordPress plugin Team Section Block 跨站脚本漏洞 — Team Section Block – Showcase Team Members with Layout Options | 6.4 | Medium | 2026-01-17 |
| CVE-2026-23643 | CakePHP 跨站脚本漏洞 — cakephp | 5.4 | Medium | 2026-01-16 |
| CVE-2019-25297 | WordPress plugin Poll, Survey & Quiz Maker Plugin by Opinion Stage 安全漏洞 — Poll, Survey & Quiz Maker Plugin by Opinion Stage | 6.1 | - | 2026-01-16 |
| CVE-2026-23725 | WeGIA 跨站脚本漏洞 — WeGIA | 5.4 | - | 2026-01-16 |
| CVE-2026-23724 | WeGIA 跨站脚本漏洞 — WeGIA | 4.3 | Medium | 2026-01-16 |
| CVE-2026-23722 | WeGIA 跨站脚本漏洞 — WeGIA | 9.1 | Critical | 2026-01-16 |
| CVE-2026-23645 | SiYuan 跨站脚本漏洞 — siyuan | 5.4 | - | 2026-01-16 |
| CVE-2021-47844 | Xmind 安全漏洞 — Xmind | 6.1 | Medium | 2026-01-16 |
| CVE-2021-47841 | SnipCommand 安全漏洞 — SnipCommand | 6.1 | Medium | 2026-01-16 |
| CVE-2021-47842 | StudyMD 安全漏洞 — StudyMD | 7.2 | High | 2026-01-16 |
| CVE-2021-47840 | Moeditor 安全漏洞 — Moeditor | 7.2 | High | 2026-01-16 |
| CVE-2021-47839 | Marky 安全漏洞 — Marky | 7.2 | High | 2026-01-16 |
| CVE-2021-47837 | Markdownify 安全漏洞 — Markdownify | 7.2 | High | 2026-01-16 |
| CVE-2021-47838 | markright 安全漏洞 — Markright | 7.2 | High | 2026-01-16 |
| CVE-2021-47835 | Freeter 安全漏洞 — Freeter | 7.2 | High | 2026-01-16 |
| CVE-2021-47836 | Markdown Explorer 安全漏洞 — Markdown Explorer | 6.1 | Medium | 2026-01-16 |
CWE-79(在Web页面生成时对输入的转义处理不恰当(跨站脚本)) 是常见的弱点类别,本平台收录该类弱点关联的 21529 条 CVE 漏洞。