reconnecting

Dashboard Threats Map Feeds Pricing View Plans & Pricing

reconnecting

Threats Tagged 'cwe-80'

View all threats tagged with 'cwe-80'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Filter Threats

Narrow down the results by type, severity, or affected countries

Type

Severity

Country

Tag

Time Range

Sort By

Active filters (1):Tag: cwe-80

Threats Tagged 'cwe-80'

Click on any threat for detailed analysis and mitigation recommendations


CVE-2026-57534: CWE-80 Improper neutralization of Script-Related HTML tags in a web page (basic XSS) in pretix pretix-pagesCVE-2026-57534 0 Malicious HTML content could be injected into the content of a page in the pretix-pages plugin. LowVulnerability#cve #cve-2026-57534 #cwe-80 Join the discussion	CVE Database V5	06/25/2026, 14:11:13 UTC Added: 06/25/2026, 14:46:09 UTC
CVE-2026-13314: CWE-80 Improper neutralization of Script-Related HTML tags in a web page (basic XSS) in pretix pretix-digitalCVE-2026-13314 0 Malicious HTML content could be injected into the content rendered by the pretix-digital plugin. LowVulnerability#cve #cve-2026-13314 #cwe-80 Join the discussion	CVE Database V5	06/25/2026, 13:53:07 UTC Added: 06/25/2026, 14:46:08 UTC
CVE-2026-50146: CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in withastro astroCVE-2026-50146 0 Astro is a web framework. Prior to 6.3.3, when a component uses a client:* directive, Astro inserts named slot content into a data-astro-template attribute without HTML escaping the slot name allowing an attacker to break out of the attribute context and inject arbitrary HTML, resulting in reflected XSS during SSR. This vulnerability is fixed in 6.3.3. HighVulnerability#cve #cve-2026-50146 #cwe-80 Join the discussion	CVE Database V5	06/22/2026, 17:31:56 UTC Added: 06/22/2026, 19:09:21 UTC
CVE-2025-62198: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in Apache Software Foundation Apache AtlasCVE-2025-62198 0 An authenticated user can perform XSS. This issue affects Apache Atlas versions 2.4.0 and earlier. Users are recommended to upgrade to version 2.5.0, which fixes the issue. MediumVulnerability#cve #cve-2025-62198 #cwe-80 Join the discussion	CVE Database V5	06/22/2026, 07:47:11 UTC Added: 06/22/2026, 08:09:14 UTC
CVE-2026-46492: CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in commenthol md-fileserverCVE-2026-46492 0 md-fileserver allows for local viewing of markdown files in a browser. Prior to version 1.10.3, a cross-site scripting (XSS) vulnerability exists in the application’s Markdown rendering logic. When user-supplied Markdown content is rendered, embedded raw HTML—including <script> tags—is processed and injected into the resulting page without sanitization, allowing arbitrary JavaScript execution in the context of the affected domain. This issue has been patched in version 1.10.3. HighVulnerability#cve #cve-2026-46492 #cwe-80 Join the discussion	CVE Database V5	06/09/2026, 16:09:29 UTC Added: 06/09/2026, 16:26:00 UTC
CVE-2026-34033: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in Apache Software Foundation Apache AnswerCVE-2026-34033 0 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. User-supplied content was included in notification emails without proper escaping, allowing authenticated users to inject arbitrary HTML into emails sent to other users. Users are recommended to upgrade to version 2.0.1, which fixes the issue. MediumVulnerability#cve #cve-2026-34033 #cwe-80 Join the discussion	CVE Database V5	06/09/2026, 07:35:16 UTC Added: 06/09/2026, 09:55:54 UTC
CVE-2024-2010: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in TE Informatics V5CVE-2024-2010 0 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in TE Informatics V5 allows Reflected XSS. This issue affects V5: before 6.2. HighVulnerability#cve #cve-2024-2010 #cwe-80 Join the discussion	CVE Database V5	09/12/2024, 08:49:16 UTC Added: 06/03/2026, 15:48:58 UTC
CVE-2024-9147: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in Bna Informatics PosPratikCVE-2024-9147 0 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Bna Informatics PosPratik allows XSS Through HTTP Query Strings. This issue affects PosPratik: before v3.2.1. MediumVulnerability#cve #cve-2024-9147 #cwe-80 Join the discussion	CVE Database V5	11/04/2024, 12:37:09 UTC Added: 06/02/2026, 08:33:48 UTC
CVE-2026-44839: CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in rabbitmq rabbitmq-serverCVE-2026-44839 0 CVE-2026-44839 is a medium severity vulnerability in rabbitmq-server versions from 3.7.0 up to but not including 4.0.13, and from 4.1.0-alpha up to but not including 4.1.2. It involves improper neutralization of script-related HTML tags, classified as CWE-80, which is a basic cross-site scripting (XSS) vulnerability. MediumVulnerability#cve #cve-2026-44839 #cwe-80 Join the discussion	CVE Database V5	05/27/2026, 15:07:10 UTC Added: 05/27/2026, 15:18:48 UTC

Showing 1 to 9 of 9 results

Filters:Tag: cwe-80

Page 1 of 1

OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited