CWE-79

High likelihood

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

45,468 vulnerabilities with CWE-79
CVE-2024-8145 LOW
ClassCMS 4.8 - Cross-Site Scripting via Article Title Parameter
CVSS 2.4
CVE-2024-8144 LOW
ClassCMS 4.8 - Cross-Site Scripting in Logo Handler
CVSS 3.5
CVE-2024-8142 LOW
SourceCodester Daily Calories Monitoring Tool 1.0 - XSS
CVSS 3.5
CVE-2024-8141 LOW
SourceCodester Daily Calories Monitoring Tool 1.0 - XSS
CVSS 3.5
CVE-2024-8140 LOW
SourceCodester Task Progress Tracker 1.0 - XSS
CVSS 3.5
CVE-2024-8137 LOW
SourceCodester Record Management System 1.0 - XSS
CVSS 3.5
CVE-2024-8136 LOW
SourceCodester Record Management System 1.0 - XSS
CVSS 3.5
CVE-2024-2254 MEDIUM
RT Easy Builder - WordPress <2.2 - XSS
CVSS 6.4
CVE-2024-40111 MEDIUM
Automad 2.0.0-alpha.4 - Stored Cross-Site Scripting in Template Body
CVSS 4.8
CVE-2024-37392 MEDIUM
SMSEagle < 6.0 - Stored Cross-Site Scripting in SMS Inbox
CVSS 6.1
CVE-2024-42852 MEDIUM
AcuToWeb server <10.5.0.7577C8b - XSS
CVSS 6.1
CVE-2024-7427 MEDIUM
OpenText Network Node Manager i 2022.11 2023.05 23.4 24.2 - Cross-Site Scripting
CVE-2024-42918 MEDIUM
itsourcecode Online Accreditation Management System - XSS
CVSS 5.4
CVE-2024-41878 MEDIUM
Adobe Experience Manager < 6.5.20.0 and < 2024.03 - DOM-based Cross-Site Scripting
CVSS 5.4
CVE-2024-41877 MEDIUM
Adobe Experience Manager < 6.5.20.0 and < 2024.03 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41876 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-41875 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41848 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-41847 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Reflected Cross-Site Scripting
CVSS 5.4
CVE-2024-41846 MEDIUM
Adobe Experience Manager <6.5.21 and <2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41845 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41844 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41843 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 5.4
CVE-2024-41842 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Stored Cross-Site Scripting in Form Fields
CVSS 4.8
CVE-2024-41841 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Reflected Cross-Site Scripting
CVSS 5.4
Details
Vulnerabilities 45,468
Exploit Likelihood High