CWE-80
Improper Neutralization of Script-Related HTML Tags
MITRENo catalog description on file. The MITRE CWE site has the canonical reference.
Recent CVEs
showing 6 of 6- CVE-2018-19943High· 8.0KEVEPSS 7%22 h ago
QNAP NAS File Station Cross-Site Scripting Vulnerability
- CVE-2020-13965Medium· 6.1KEVEPSS 72%22 h ago
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability
- CVE-2018-19953Medium· 6.1KEVEPSS 32%22 h ago
QNAP NAS File Station Cross-Site Scripting Vulnerability
- CVE-2026-34033Medium· 5.4EPSS 0%2 d ago
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. User-supplied content was included in notification emails without proper escapi
- CVE-2026-46492High· 7.2EPSS 0%3 d ago
md-fileserver allows for local viewing of markdown files in a browser. Prior to version 1.10.3, a cross-site scripting (XSS) vulnerability exists in the application’s Markdown rendering logic. When user-supplied Markdown content is rendered
npm - CVE-2026-11511Low· 3.5EPSS 0%5 d ago
A weakness has been identified in Bolt CMS up to 3.7.5. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead
CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.