CWE-87— Improper Neutralization of Alternate XSS Syntax
47 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-87page 1 of 1
- CVE-2020-5298MEDIUMCVSS 4.0EG 4.02020-06-03
In OctoberCMS (october/october composer package) versions from 1.0.319 and before 1.0.466, a user with the ability to use the import functionality of the `ImportExportController` behavior can be socially engineered by an attacker to upload…
- CVE-2021-40131MEDIUMCVSS 5.5EG 5.52021-11-19
A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vul…
- CVE-2022-20963MEDIUMCVSS 5.4EG 5.42022-11-04
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface…
- CVE-2022-36033MEDIUMCVSS 6.1EG 6.12022-08-29
jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `javascript:` URL expressions, which could allow XSS attacks when a reader subseq…
- CVE-2022-39295MEDIUMCVSS 6.1EG 6.12022-10-13
Knowage is an open source suite for modern business analytics alternative over big data systems. KnowageLabs / Knowage-Server starting with the 6.x branch and prior to versions 7.4.22, 8.0.9, and 8.1.0 is vulnerable to cross-site scripting…
- CVE-2023-20188MEDIUMCVSS 4.8EG 4.82023-06-28
A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an authen…
- CVE-2023-20208MEDIUMCVSS 4.8EG 4.82023-11-21
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to conduct an XSS attack against a user of the web-based management interface of an affected device.
- CVE-2023-35156CRITICALCVSS 9.6EG 9.62023-06-23
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the delete tem…
- CVE-2023-35158CRITICALCVSS 9.6EG 9.62023-06-23
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the restore te…
- CVE-2023-35159CRITICALCVSS 9.6EG 9.62023-06-23
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the deletespac…
- CVE-2023-35160CRITICALCVSS 9.6EG 9.62023-06-23
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the resubmit t…
- CVE-2023-35161CRITICALCVSS 9.6EG 9.62023-06-23
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Users are able to forge an URL with a payload allowing to inject Javascript in the page (XSS). It's possible to exploit the DeleteAppl…
- CVE-2023-50712MEDIUMCVSS 4.6EG 4.62023-12-22
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations in ver…
- CVE-2023-6446MEDIUMCVSS 4.4EG 4.42024-01-11
The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.40 due to insufficient input sanitization and output escaping. This makes it possible…
- CVE-2024-25640MEDIUMCVSS 4.6EG 4.62024-02-19
Iris is a web collaborative platform that helps incident responders share technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations in versions …
- CVE-2024-2618MEDIUMCVSS 6.4EG 6.42024-05-24
The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the size attribute in all versions up to, and including, 1.6.26 due to insufficient input sanitization and output escaping. This ma…
- CVE-2024-2657MEDIUMCVSS 4.4EG 4.42024-05-30
The Font Farsi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6.6 due to insufficient input sanitization and output escaping. This makes it possible for authenti…
- CVE-2024-2750MEDIUMCVSS 6.4EG 6.42024-05-02
The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the URL attribute of the Button widget in all versions up to, and including, 2.6.9.3 due to insufficient input sanitization and output…
- CVE-2024-3162MEDIUMCVSS 6.4EG 6.42024-04-03
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Testimonial Widget Attributes in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output escaping. This make…
- CVE-2024-3519MEDIUMCVSS 6.1EG 6.12024-05-22
The Media Library Assistant plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the lang parameter in all versions up to, and including, 3.15 due to insufficient input sanitization and output escaping. This makes it po…
- CVE-2024-3666MEDIUMCVSS 6.4EG 6.42024-05-22
The Opal Estate Pro – Property Management and Submission plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the agent latitude and longitude parameters in all versions up to, and including, 1.7.6 due to insufficient in…
- CVE-2024-43381MEDIUMCVSS 5.0EG 5.02024-08-16
reNgine is an automated reconnaissance framework for web applications. Versions 2.1.2 and prior are susceptible to Stored Cross-Site Scripting (XSS) attacks. This vulnerability occurs when scanning a domain, and if the target domain's DNS …
- CVE-2024-4459MEDIUMCVSS 6.4EG 6.42024-06-06
The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widget's titles in all versions up to, and including, 2.1.2 due to insufficient input sanitization and output escaping o…
- CVE-2024-8505MEDIUMCVSS 6.4EG 6.42024-10-02
The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘button_label’ parameter in all versions up to, and including, 7.1.2 due to insufficient input sanitization and …
- CVE-2025-14732MEDIUMCVSS 6.4EG 6.42026-04-08
The Elementor Website Builder – More Than Just a Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widget parameters in all versions up to, and including, 3.35.5 due to insufficient input sanitiza…
- CVE-2025-27793MEDIUMCVSS 5.3EG 0.02025-03-27
Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In Vega prior to version 5.32.0, corresponding to vega-functions prior to version 5.17.0, users running Vega/Vega-li…
- CVE-2025-48076MEDIUMCVSS 5.4EG 5.42025-11-04
Galette is a membership management web application for non profit organizations. Versions 1.1.5.2 and below allow a user to edit a group name and insert an XSS payload. This issue is fixed in version 1.2.0.
- CVE-2025-48366MEDIUMCVSS 5.4EG 5.42025-05-22
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.119 and 25.0.20, a stored and blind XSS vulnerability exists in the Phone Number field of the user profile within the GroupOffice appl…
- CVE-2025-48494MEDIUMCVSS 5.4EG 5.42025-06-02
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded …
- CVE-2025-48495MEDIUMCVSS 5.4EG 5.42025-06-02
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. By renaming the friendly name of an API key, an authenticated user could inject JS into the API key overview, which would also be executed when a…
- CVE-2025-48992MEDIUMCVSS 4.8EG 4.82025-06-16
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.123 and 25.0.27, a stored and blind cross-site scripting (XSS) vulnerability exists in the Name Field of the user profile. A malicious…
- CVE-2025-49137HIGHCVSS 8.5EG 8.52025-06-09
HAX CMS PHP allows users to manage their microsite universe with a PHP backend. Prior to version 11.0.0, the application does not sufficiently sanitize user input, allowing for the execution of arbitrary JavaScript code. The 'saveNode' and…
- CVE-2025-54369CRITICALCVSS 9.3EG 0.02025-07-24
Node-SAML is a SAML library not dependent on any frameworks that runs in Node. In versions 5.0.1 and below, Node-SAML loads the assertion from the (unsigned) original response document. This is different than the parts that are verified wh…
- CVE-2025-55291HIGHCVSS 7.1EG 7.12025-08-18
Shaarli is a minimalist bookmark manager and link sharing service. Prior to 0.15.0, the input string in the cloud tag page is not properly sanitized. This allows the </title> tag to be prematurely closed, leading to a reflected Cross-Site …
- CVE-2025-62414MEDIUMCVSS 6.9EG 6.92025-10-16
Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3.7, the “Create New Customer” feature (in the admin panel) is vulnerable to Cross-Site Scripting (XSS). An attacker with access to the admin create-customer form can …
- CVE-2025-62415MEDIUMCVSS 6.9EG 6.92025-10-16
Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3.7, the TinyMCE image upload functionality allows an attacker with sufficient privileges (e.g. admin) to upload a crafted HTML file containing embedded JavaScript. When v…
- CVE-2025-62418MEDIUMCVSS 6.9EG 6.92025-10-16
Bagisto is an open source laravel eCommerce platform. In Bagisto v2.3.7, the TinyMCE image upload functionality allows an attacker with sufficient privileges (e.g. admin) to upload a crafted SVG file containing embedded JavaScript. When vi…
- CVE-2025-65961LOWCVSS 3.3EG 3.32025-11-25
Contao is an Open Source CMS. From version 4.0.0 to before 4.13.57, before 5.3.42, and before 5.6.5, it is possible to inject code into the template output that will be executed in the browser in the front end and back end. This issue has …
- CVE-2025-8561MEDIUMCVSS 6.4EG 6.42025-10-15
The Ova Advent plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping on user supplied attributes…
- CVE-2026-22711MEDIUMCVSS 6.9EG 0.02026-04-07
Improper neutralization of alternate XSS syntax vulnerability in The Wikimedia Foundation Mediawiki - Wikilove Extension allows Cross-Site Scripting (XSS).The issue has been remediated on the `master` branch, and in the release branches fo…
- CVE-2026-33510HIGHCVSS 8.8EG 8.82026-04-06
Homarr is an open-source dashboard. Prior to 1.57.0, a DOM-based Cross-Site Scripting (XSS) vulnerability has been discovered in Homarr's /auth/login page. The application improperly trusts a URL parameter (callbackUrl), which is passed to…
- CVE-2026-34598MEDIUMCVSS 6.1EG 6.12026-04-02
YesWiki is a wiki system written in PHP. Prior to version 4.6.0, a stored and blind XSS vulnerability exists in the form title field. A malicious attacker can inject JavaScript without any authentication via a form title that is saved in t…
- CVE-2026-35534HIGHCVSS 7.6EG 7.62026-04-07
ChurchCRM is an open-source church management system. Prior to 7.1.0, a stored cross-site scripting vulnerability exists in PersonView.php due to incorrect use of sanitizeText() as an output sanitizer for HTML attribute context. The functi…
- CVE-2026-40321HIGHCVSS 8.0EG 8.02026-04-17
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 10.2.2, a user could upload a specially crafted SVG file that could include scripts that can target both authent…
- CVE-2026-42235CRITICALCVSS 9.6EG 9.62026-05-04
n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attacker could register a malicious MCP OAuth client with a crafted client_name. If a victim user authorized the OAuth c…
- CVE-2026-42458MEDIUMCVSS 5.3EG 5.32026-05-15
Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to 20.18.0, there is a reflected XSS…
- CVE-2026-45314MEDIUMCVSS 6.1EG 6.12026-05-15
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.3, the channel webhook create/update flow accepts arbitrary profile_image_url values, including data:image/svg+xml;base64,... p…
Map vulnerabilities like CWE-87 to your infrastructure
EchelonGraph correlates every CVE — across CWE-87 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →