CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

44,730 vulnerabilities with CWE-79
CVE-2026-36728 MEDIUM
FastapiAdmin 2.2.0 - Stored Cross-Site Scripting in AI Assistant Chat
CVSS 5.4
CVE-2026-36725 MEDIUM
FastapiAdmin 2.2.0 - Stored Cross-Site Scripting via Notice Content Parameter
CVSS 6.1
CVE-2026-34694 MEDIUM
Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.9
CVE-2026-34693 HIGH
Adobe Experience Manager Forms JEE | Cross-site Scripting (Reflected XSS) (CWE-79)
CVSS 8.0
CVE-2026-34691 CRITICAL
Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 9.3
CVE-2026-48562 MEDIUM
Microsoft SharePoint Server Spoofing Vulnerability
CVSS 4.6
CVE-2026-48560 MEDIUM
Microsoft SharePoint Server Spoofing Vulnerability
CVSS 5.4
CVE-2026-48304 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-48301 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-48300 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-48299 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-48297 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-48280 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48271 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48268 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48266 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48265 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48264 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48258 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48256 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48251 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-48250 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-47993 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
CVE-2026-47990 MEDIUM
Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
CVSS 5.4
CVE-2026-47989 MEDIUM
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVSS 5.4
Details
Vulnerabilities 44,730
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits