Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
5 HIGH15 MEDIUM
CVE-2024-47917
HIGH CVSS 7.5
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.016
CVE-2024-47924
HIGH CVSS 7.5
Find Similar
Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.016
CVE-2024-47920
HIGH CVSS 7.5
Find Similar
Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.016
CVE-2024-47925
HIGH CVSS 7.5
Find Similar
Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.015
CVE-2025-5742
MEDIUM CVSS 5.1
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability exists when an authenticated user modifies configuration parameters on the web server
NVD RRF 0.015
CVE-2025-55064
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.015
CVE-2025-55063
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.015
CVE-2025-55062
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.014
CVE-2025-46383
MEDIUM CVSS 6.1
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.014
CVE-2025-55059
MEDIUM CVSS 6.1
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
maxum
NVD RRF 0.014
CVE-2025-55056
MEDIUM CVSS 6.1
Find Similar
Multiple CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
maxum
NVD RRF 0.014
CVE-2024-43353
MEDIUM CVSS 6.5
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through <= 2.7.2.
NVD RRF 0.014
CVE-2025-7746
MEDIUM CVSS 5.3
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause an unvalidated data injected by a malicious user potentially leading
NVD RRF 0.013
CVE-2025-70060
MEDIUM CVSS 5.4
Find Similar
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in YMFE yapi v1.12.0.
ymfe
NVD RRF 0.013
CVE-2024-37434
MEDIUM CVSS 4.8
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vito Peleg Atarim atarim-visual-collaboration.This issue affects Atarim: from n/a through <= 3.31.
atarim
NVD RRF 0.013
CVE-2024-8401
MEDIUM CVSS 5.4
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability exists when an authenticated attacker modifies folder names within the context of the product
NVD RRF 0.013
CVE-2025-3117
MEDIUM CVSS 5.1
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists impacting configuration file paths that could cause an unvalidated data injected by au
NVD RRF 0.013
CVE-2025-62040
HIGH CVSS 7.1
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YOP YOP Poll yop-poll.This issue affects YOP Poll: from n/a through <= 6.5.37.
NVD RRF 0.013
Page 1+ Next →