CWE-80

High likelihood

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Parent: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as "<", ">", and "&" that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages.

517 vulnerabilities with CWE-80
CVE-2025-49137 HIGH
PSU Haxcms-nodejs < 11.0.0 - Basic XSS
CVSS 8.5
CVE-2025-5686 MEDIUM
Paged Gallery <0.8 - XSS
CVSS 6.4
CVE-2025-23393 MEDIUM
spacewalk-java - XSS
CVSS 5.2
CVE-2025-23392 MEDIUM
spacewalk-java - XSS
CVSS 5.2
CVE-2025-33138 MEDIUM
IBM Aspera Faspex <5.0.12 - XSS
CVSS 5.4
CVE-2025-20267 MEDIUM
Cisco ISE - XSS
CVSS 4.8
CVE-2025-4126 MEDIUM
EG-Series WordPress <2.1.1 - XSS
CVSS 6.4
CVE-2025-4168 MEDIUM
Subpage List <1.3.3 - XSS
CVSS 6.4
CVE-2025-3521 MEDIUM
Team Members - WordPress <3.4.0 - XSS
CVSS 6.4
CVE-2025-39524 MEDIUM
bPlugins Html5 Audio Player <2.2.28 - XSS
CVSS 6.5
CVE-2025-32027 MEDIUM
Yii < 1.1.31 - Basic XSS
CVSS 6.1
CVE-2025-32230 MEDIUM
Themeum Tutor LMS <3.4.0 - XSS
CVSS 4.3
CVE-2025-31384 HIGH
Aviplugins Videos <1.0.5 - XSS
CVSS 7.1
CVE-2025-0272 MEDIUM
HCL DevOps Deploy/HCL Launch - XSS
CVSS 5.4
CVE-2025-30676 MEDIUM
Apache Ofbiz < 18.12.19 - Basic XSS
CVSS 6.1
CVE-2025-30210 MEDIUM
Bruno <1.39.1 - XSS
CVSS 6.1
CVE-2025-30161 MEDIUM
OpenEMR - Stored XSS
CVSS 5.4
CVE-2025-31604 MEDIUM
Cal.com <1.0.0 - Basic XSS
CVSS 6.5
CVE-2025-31575 MEDIUM
Flag Icons <2.2 - Basic XSS
CVSS 5.9
CVE-2025-22501 HIGH
Improve My City <1.6 - XSS
CVSS 7.1
CVE-2025-31075 MEDIUM
videowhisper MicroPayments <2.9.29 - XSS
CVSS 6.5
CVE-2025-1997 MEDIUM
IBM UrbanCode Deploy/DevOps Deploy <7.3.2.0 - XSS
CVSS 5.4
CVE-2025-29426 MEDIUM
Code-projects Online Class And Exam Scheduling System - Basic XSS
CVSS 4.6
CVE-2025-29427 MEDIUM
Fabian Online Class And Exam Scheduling System - Basic XSS
CVSS 5.9
CVE-2025-29430 MEDIUM
Fabian Online Class And Exam Scheduling System - Basic XSS
CVSS 4.1
Details
Vulnerabilities 517
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits