Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-116

CWE-116

High likelihood

Improper Encoding or Escaping of Output

Parent: CWE-707 - Improper Neutralization

The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.

414 vulnerabilities with CWE-116

CVE-2024-28245 MEDIUM

KaTeX <0.16.10 - RCE

CVE-2024-29156 MEDIUM

OpenStack Murano <16.0.0 - Info Disclosure

CVE-2024-27938 MEDIUM

Postal <3.0.0 - SMTP Smuggling

CVE-2024-21499 MEDIUM

github.com/greenpau/caddy-security - HTTP Header Injection

CVE-2024-0690 MEDIUM

Ansible-core - Info Disclosure

CVE-2024-1064 HIGH

Craftycontrol Crafty Controller < 4.2.2 - Denial of Service

CVE-2024-0987 MEDIUM

Sichuan Yougou Technology KuERP <1.0.4 - Info Disclosure

CVE-2024-22229 LOW

Dell Unity <5.4 - Info Disclosure

CVE-2024-0233 MEDIUM

Eventon < 2.2.7 - XSS

CVE-2024-22199 CRITICAL

Fiber Views - XSS

CVE-2023-35894 MEDIUM

IBM Control Center <6.3.1 - SSRF

CVE-2023-28362 MEDIUM

Rails - Open Redirect

CVE-2023-45359 MEDIUM

MediaWiki <1.39.5-1.40.1 - XSS

CVE-2023-26289 MEDIUM

IBM Aspera Orchestrator 4.0.1 - HTTP Header Injection

CVE-2023-28952 MEDIUM

IBM Cognos Controller <11.0.0 - Command Injection

CVE-2023-47143 CRITICAL

IBM Tivoli Application Dependency Discovery Manager < 7.3.0.11 - XSS

CVE-2023-28738 HIGH

Intel NUC BIOS <JY0070 - Privilege Escalation

CVE-2023-7234 MEDIUM

OPCUAServerToolkit - Info Disclosure

CVE-2023-6005 MEDIUM

EventON WordPress plugin <4.5.5-2.2.7 - XSS

CVE-2023-52102 HIGH

WMS - Info Disclosure

CVE-2023-52098 HIGH

CVE-2023-42183 MEDIUM

lockss-daemon <1.77.3 - Auth Bypass

CVE-2023-45539 HIGH

HAProxy <2.8.2 - Info Disclosure

CVE-2023-26279 LOW

IBM QRadar WinCollect Agent <10.1.7 - Privilege Escalation

CVE-2023-38316 CRITICAL

OpenNDS Captive Portal <10.1.2 - Command Injection

Previous Page 8 of 17 Next

Details

Vulnerabilities 414

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy