CWE-87

CWE-87

No catalog description on file. The MITRE CWE site has the canonical reference.

CVEs (total)

2

Critical

0

High

1

Medium

1

Low

0

Severity distribution

Recent CVEs

showing 2 of 2

CVE-2026-25688Medium· 6.1EPSS 0%3 d ago
Improper Neutralization of Alternate XSS Syntax vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. AI-generated response content was rendered in the browser without proper sanitization, allowing malicious scr
CVE-2026-46492High· 7.2EPSS 0%3 d ago
md-fileserver allows for local viewing of markdown files in a browser. Prior to version 1.10.3, a cross-site scripting (XSS) vulnerability exists in the application’s Markdown rendering logic. When user-supplied Markdown content is rendered
npm

CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.