Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
7 HIGH12 MEDIUM1 NONE
CVE-2025-70060
MEDIUM CVSS 5.4
Find Similar
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in YMFE yapi v1.12.0.
ymfe
NVD RRF 0.016
CVE-2025-70025
MEDIUM CVSS 6.1
Find Similar
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in benkeen generatedata 4.0.14.
generatedata
NVD RRF 0.016
CVE-2025-62040
HIGH CVSS 7.1
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YOP YOP Poll yop-poll.This issue affects YOP Poll: from n/a through <= 6.5.37.
NVD RRF 0.016
CVE-2025-70033
MEDIUM CVSS 5.4
Find Similar
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4.
sunbird
NVD RRF 0.016
CVE-2025-55064
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.015
CVE-2025-55063
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.015
CVE-2025-55062
MEDIUM CVSS 4.8
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.015
CVE-2025-46383
MEDIUM CVSS 6.1
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
NVD RRF 0.014
CVE-2024-47924
HIGH CVSS 7.5
Find Similar
Boa web server – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.014
CVE-2024-47917
HIGH CVSS 7.5
Find Similar
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.014
CVE-2025-55059
MEDIUM CVSS 6.1
Find Similar
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
maxum
NVD RRF 0.014
CVE-2024-47925
HIGH CVSS 7.5
Find Similar
Tecnick TCExam – Multiple CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.014
CVE-2025-55056
MEDIUM CVSS 6.1
Find Similar
Multiple CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
maxum
NVD RRF 0.014
CVE-2025-70038
HIGH CVSS 8.8
Find Similar
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code.
linagora
NVD RRF 0.013
CVE-2024-47920
HIGH CVSS 7.5
Find Similar
Tiki Wiki CMS – CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
NVD RRF 0.013
CVE-2025-62036
HIGH CVSS 7.1
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in uxper Togo togo.This issue affects Togo: from n/a through < 1.0.4.
NVD RRF 0.013
CVE-2024-37434
MEDIUM CVSS 4.8
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vito Peleg Atarim atarim-visual-collaboration.This issue affects Atarim: from n/a through <= 3.31.
atarim
NVD RRF 0.013
CVE-2025-67475
NONE CVSS 0.0
Find Similar
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files include
mediawiki
NVD RRF 0.013
Page 1+ Next →