CWE-436
Interpretation Conflict
MITRENo catalog description on file. The MITRE CWE site has the canonical reference.
CVEs (total)
3
Critical
0
High
2
Medium
0
Low
0
Severity distribution
Recent CVEs
showing 3 of 3- CVE-2025-48384High· 8.0KEVEPSS 1%22 h ago
Git Link Following Vulnerability
- CVE-2026-42462High· 7.0EPSS 0%2 d ago
Fedify is a TypeScript library for building federated server apps powered by ActivityPub. Prior to versions 1.9.11, 1.10.10, 2.0.18, 2.1.14, and 2.2.3, an attacker can make use of JSON-LD features to restructure a JSON-LD document that woul
npm - CVE-2026-47344—EPSS 0%4 d ago
When ALLOW_INSECURE_RAW_TEXT is enabled, whitespace-variant closing tags (e.g., </style\t>) are not recognized by the sanitizer but accepted by browsers as valid end tags, allowing subsequent content to escape sanitization. This allows bypa
CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.