Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-80

CWE-80

High likelihood

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Parent: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as "<", ">", and "&" that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages.

517 vulnerabilities with CWE-80

CVE-2025-20342 MEDIUM

Cisco IMC - XSS

CVE-2025-6247 MEDIUM

WordPress Automatic Plugin <3.118.0 - CSRF

CVE-2025-51989 HIGH

Evolution Consulting Kft. HRmaster <v235 - Code Injection

CVE-2025-57730 MEDIUM

Jetbrains Intellij Idea < 2025.2.0 - Basic XSS

CVE-2025-55291 HIGH

Shaarli <0.15.0 - XSS

CVE-2025-54421 HIGH

Nameless < 2.2.4 - Basic XSS

CVE-2025-54117 CRITICAL

Nameless < 2.2.4 - Basic XSS

CVE-2025-55672 MEDIUM

Apache Superset <5.0.0 - XSS

CVE-2025-54698 MEDIUM

RadiusTheme Classified Listing <5.0.0 - Basic XSS

CVE-2025-8621 MEDIUM

Mosaic Generator <1.0.5 - XSS

CVE-2025-20331 MEDIUM

Cisco ISE - Stored XSS

CVE-2025-54789 MEDIUM

Humhub Files < 0.16.10 - Basic XSS

CVE-2025-54589 MEDIUM

9001 Copyparty < 1.18.7 - Basic XSS

CVE-2025-52897 MEDIUM

Glpi < 10.0.19 - Basic XSS

CVE-2025-27514 MEDIUM

GLPI <10.0.18 - Stored XSS

CVE-2025-54414 MEDIUM

Anubis <1.21.2 - XSS

CVE-2025-8029 HIGH

Mozilla Firefox < 128.13.0 - Basic XSS

CVE-2025-53835 CRITICAL

XWiki Rendering <14.10 - XSS

CVE-2025-31326 MEDIUM

SAP BusinessObjects - HTML Injection

CVE-2025-27358 MEDIUM

N-Media Frontend File Manager <23.2 - XSS

CVE-2025-2895 MEDIUM

IBM Cloud Pak System - Basic XSS

CVE-2025-53093 HIGH

Starcitizentools Tabber-neue < 3.1.1 - Basic XSS

CVE-2025-52902 HIGH

Filebrowser < 2.33.7 - Basic XSS

CVE-2025-4367 MEDIUM

W3eden Download Manager < 3.3.19 - Basic XSS

CVE-2025-4278 HIGH

GitLab CE/EE <18.0.2 - XSS

Previous Page 6 of 21 Next

Details

Vulnerabilities 517

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy