Falhas do tipo CWE-80
551 resultadosCVE-2026-20070MEDIUMCisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Services Cross-Site Scripting VulnerabilityEPSS 0.3%CVE-2024-7629MEDIUMResponsive Video <= 1.0 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-41752MEDIUMIBM Cognos Analytics HTML injectionEPSS 0.3%CVE-2026-39941MEDIUMChurchCRM has an XSS vulnerabilityEPSS 0.3%CVE-2025-64225MEDIUMWordPress Stockie Extra plugin <= 1.2.11 - Content Injection vulnerabilityEPSS 0.3%CVE-2026-39628MEDIUMWordPress DukaMarket theme <= 1.3.0 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.3%CVE-2025-29430MEDIUMCode-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/room.php via the id and romEPSS 0.3%CVE-2025-1997MEDIUMIBM UrbanCode Deploy (UCD) / IBM DevOps Deploy HTML injectionEPSS 0.3%CVE-2024-51689HIGHWordPress CF7 WOW Styler plugin <= 1.6.8 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-39344HIGHReflected XSS the login page through the 'username' parameterEPSS 0.3%CVE-2026-39642MEDIUMWordPress Nyla theme <= 1.7 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.3%CVE-2025-62418MEDIUMbagisto - Cross Site Scripting (XSS) in TinyMCE Image Upload (SVG)EPSS 0.3%CVE-2025-62414MEDIUMbagisto - Cross Site Scripting (XSS) in Create New CustomerEPSS 0.3%CVE-2025-62415MEDIUMbagisto - Cross Site Scripting (XSS) in TinyMCE Image Upload (HTML)EPSS 0.3%CVE-2024-41697MEDIUMPriority – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)EPSS 0.3%CVE-2024-41693MEDIUMMashov - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)EPSS 0.3%CVE-2024-36395MEDIUMVerint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)EPSS 0.3%CVE-2025-10125MEDIUMMemberlite Shortcodes <= 1.4 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-22254NONEWinter Affected by Stored Cross-Site Scripting (XSS) in Asset ManagerEPSS 0.3%CVE-2025-24680HIGHWordPress WP Multi Store Locator Plugin <= 2.4.7 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%