Weaknesses of type CWE-80
551 resultsCVE-2023-1384MEDIUMThe setMediaSource function on the amzn.thin.pl service does not sanitize the "source" parameter allowing for arbitrary javascript code to bEPSS 0.4%CVE-2024-20382MEDIUMA vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat DefensEPSS 0.4%CVE-2023-20222MEDIUMA vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) coEPSS 0.4%CVE-2024-5851MEDIUMplaySMS SMS Schedule cross site scriptingEPSS 0.4%CVE-2024-54001MEDIUMKanboard allows a persistent HTML injection site scripting in settings page date formatEPSS 0.4%CVE-2023-48763MEDIUMWordPress JetFormBuilder plugin <= 3.1.4 - Content Injection vulnerabilityEPSS 0.4%CVE-2024-4214LOWWordPress cardealer plugin <= 4.15 - Content Injection vulnerabilityEPSS 0.4%CVE-2024-6251MEDIUMplaySMS New Phonebook cross site scriptingEPSS 0.4%CVE-2024-32966MEDIUMStored Cross-site Scripting in directory listings via file names in static-web-serverEPSS 0.4%CVE-2023-20218MEDIUMA vulnerability in web-based management interface of Cisco SPA500 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remoEPSS 0.4%CVE-2024-11479MEDIUMAuthenticated HTML Injection in Issuetrak Ticket Comment FunctionEPSS 0.4%CVE-2025-54421HIGHNamelessMC allows Stored Cross Site Scripting (XSS) in SEO componentEPSS 0.4%CVE-2024-52597MEDIUM2FAuth vulnerable to stored cross-site scripting via SVG upload and direct access renderEPSS 0.4%CVE-2023-43790MEDIUMiTop vulnerable to XSS in friendlyname in object detailsEPSS 0.4%CVE-2024-9438MEDIUMSEUR Oficial <= 2.2.11 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2023-49852MEDIUMWordPress Responsive Slick Slider WordPress plugin <= 1.4 - Content Injection vulnerabilityEPSS 0.4%CVE-2023-20257MEDIUMA vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conductEPSS 0.4%CVE-2021-44196MEDIUMXSS in UBIT Information Technologies Student Information Management SystemEPSS 0.4%CVE-2023-47513MEDIUMWordPress ARI Stream Quiz – WordPress Quizzes Builder plugin <= 1.3.2 - Content Injection vulnerabilityEPSS 0.4%CVE-2021-44197MEDIUMXSS in UBIT Information Technologies Student Information Management SystemEPSS 0.4%