Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Tag: xss Clear
ID Title
CVE-2026-56359 Cross-Site Scripting (XSS) in CVE-2026-56359 (CVE-2026-56359)
cross-site scripting in CVE-2026-56359 (CVE-2026-56359). Risk of unauthorized operations or information disclosure.
CVE-2026-60092 Cross-Site Scripting (XSS) in CVE-2026-60092 (CVE-2026-60092)
cross-site scripting in CVE-2026-60092 (CVE-2026-60092). Risk of unauthorized operations or information disclosure. Exploitable via `User-Agent header`.
CVE-2026-58654 Unrestricted File Upload in path-traversal (CVE-2026-58654)
vulnerability in path-traversal (CVE-2026-58654). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.0.1` or later.
CVE-2026-36162 Cross-Site Scripting (XSS) in CVE-2026-36162 (CVE-2026-36162)
cross-site scripting in CVE-2026-36162 (CVE-2026-36162). Risk of unauthorized operations or information disclosure.
CVE-2026-53641 Cross-Site Scripting (XSS) in CVE-2026-53641 (CVE-2026-53641)
cross-site scripting in CVE-2026-53641 (CVE-2026-53641). Risk of unauthorized operations or information disclosure. Exploitable via ``content_html``.
CVE-2026-59710 Cross-Site Scripting (XSS) in CVE-2026-59710 (CVE-2026-59710)
cross-site scripting in CVE-2026-59710 (CVE-2026-59710). Risk of unauthorized operations or information disclosure.
CVE-2026-59711 Cross-Site Scripting (XSS) in CVE-2026-59711 (CVE-2026-59711)
cross-site scripting in CVE-2026-59711 (CVE-2026-59711). Risk of unauthorized operations or information disclosure.
CVE-2026-14791 Cross-Site Scripting (XSS) in CVE-2026-14791 (CVE-2026-14791)
cross-site scripting in CVE-2026-14791 (CVE-2026-14791). Risk of unauthorized operations or information disclosure.
CVE-2026-14752 Cross-Site Scripting (XSS) in CVE-2026-14752 (CVE-2026-14752)
cross-site scripting in CVE-2026-14752 (CVE-2026-14752). Risk of unauthorized operations or information disclosure.
CVE-2026-14655 Cross-Site Scripting (XSS) in CVE-2026-14655 (CVE-2026-14655)
cross-site scripting in CVE-2026-14655 (CVE-2026-14655). Risk of unauthorized operations or information disclosure.
CVE-2026-14656 Cross-Site Scripting (XSS) in CVE-2026-14656 (CVE-2026-14656)
cross-site scripting in CVE-2026-14656 (CVE-2026-14656). Risk of unauthorized operations or information disclosure.
CVE-2026-14634 Cross-Site Scripting (XSS) in CVE-2026-14634 (CVE-2026-14634)
cross-site scripting in CVE-2026-14634 (CVE-2026-14634). Risk of unauthorized operations or information disclosure.
CVE-2026-14633 Cross-Site Scripting (XSS) in CVE-2026-14633 (CVE-2026-14633)
cross-site scripting in CVE-2026-14633 (CVE-2026-14633). Risk of unauthorized operations or information disclosure.
CVE-2026-9756 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9756)
cross-site scripting in wordpress (CVE-2026-9756). Risk of unauthorized operations or information disclosure.
CVE-2026-59102 Cross-Site Scripting (XSS) in vue (CVE-2026-59102)
cross-site scripting in vue (CVE-2026-59102). Risk of unauthorized operations or information disclosure.
CVE-2026-8699 Cross-Site Scripting (XSS) in CVE-2026-8699 (CVE-2026-8699)
cross-site scripting in CVE-2026-8699 (CVE-2026-8699). Risk of unauthorized operations or information disclosure.
CVE-2026-54720 Cross-Site Scripting (XSS) in CVE-2026-54720 (CVE-2026-54720)
cross-site scripting in CVE-2026-54720 (CVE-2026-54720). Risk of unauthorized operations or information disclosure.
CVE-2026-58037 Cross-Site Scripting (XSS) in CVE-2026-58037 (CVE-2026-58037)
cross-site scripting in CVE-2026-58037 (CVE-2026-58037). Risk of unauthorized operations or information disclosure.
CVE-2026-58038 Cross-Site Scripting (XSS) in CVE-2026-58038 (CVE-2026-58038)
cross-site scripting in CVE-2026-58038 (CVE-2026-58038). Risk of unauthorized operations or information disclosure.
CVE-2026-58030 Cross-Site Scripting (XSS) in CVE-2026-58030 (CVE-2026-58030)
cross-site scripting in CVE-2026-58030 (CVE-2026-58030). Risk of unauthorized operations or information disclosure.
CVE-2026-58028 Cross-Site Scripting (XSS) in CVE-2026-58028 (CVE-2026-58028)
cross-site scripting in CVE-2026-58028 (CVE-2026-58028). Risk of unauthorized operations or information disclosure.
CVE-2026-58032 Cross-Site Scripting (XSS) in CVE-2026-58032 (CVE-2026-58032)
cross-site scripting in CVE-2026-58032 (CVE-2026-58032). Risk of unauthorized operations or information disclosure.
CVE-2026-58031 Cross-Site Scripting (XSS) in CVE-2026-58031 (CVE-2026-58031)
cross-site scripting in CVE-2026-58031 (CVE-2026-58031). Risk of unauthorized operations or information disclosure.
CVE-2026-53907 Cross-Site Scripting (XSS) in mycomplianceoffice (CVE-2026-53907)
cross-site scripting in mycomplianceoffice (CVE-2026-53907). Risk of unauthorized operations or information disclosure.
CVE-2026-12142 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12142)
cross-site scripting in wordpress (CVE-2026-12142). Risk of unauthorized operations or information disclosure.
CVE-2026-13733 Cross-Site Scripting (XSS) in c (CVE-2026-13733)
cross-site scripting in c (CVE-2026-13733). Risk of unauthorized operations or information disclosure.
CVE-2026-13015 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13015)
cross-site scripting in wordpress (CVE-2026-13015). Risk of unauthorized operations or information disclosure.
CVE-2026-56356 Cross-Site Scripting (XSS) in n8n (CVE-2026-56356)
cross-site scripting in n8n (CVE-2026-56356). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.123.27` or later.
CVE-2026-10585 Cross-Site Scripting (XSS) in c (CVE-2026-10585)
cross-site scripting in c (CVE-2026-10585). Risk of unauthorized operations or information disclosure.
CVE-2025-36323 Cross-Site Scripting (XSS) in ibm (CVE-2025-36323)
cross-site scripting in ibm (CVE-2025-36323). Risk of unauthorized operations or information disclosure.
CVE-2025-36320 Cross-Site Scripting (XSS) in ibm (CVE-2025-36320)
cross-site scripting in ibm (CVE-2025-36320). Risk of unauthorized operations or information disclosure.
CVE-2026-52760 Cross-Site Scripting (XSS) in apache (CVE-2026-52760)
cross-site scripting in apache (CVE-2026-52760). Risk of unauthorized operations or information disclosure.
CVE-2026-6954 Cross-Site Scripting (XSS) in CVE-2026-6954 (CVE-2026-6954)
cross-site scripting in CVE-2026-6954 (CVE-2026-6954). Risk of unauthorized operations or information disclosure.
CVE-2026-11589 Vulnerability in wordpress (CVE-2026-11589)
vulnerability in wordpress (CVE-2026-11589). Successful exploitation can lead to full system takeover.
CVE-2026-54889 Cross-Site Scripting (XSS) in CVE-2026-54889 (CVE-2026-54889)
cross-site scripting in CVE-2026-54889 (CVE-2026-54889). Risk of unauthorized operations or information disclosure.
CVE-2026-53427 Cross-Site Scripting (XSS) in CVE-2026-53427 (CVE-2026-53427)
cross-site scripting in CVE-2026-53427 (CVE-2026-53427). Risk of unauthorized operations or information disclosure.
CVE-2026-57958 Cross-Site Scripting (XSS) in laravel (CVE-2026-57958)
cross-site scripting in laravel (CVE-2026-57958). Risk of unauthorized operations or information disclosure.
CVE-2026-57948 Vulnerability in CVE-2026-57948 (CVE-2026-57948)
vulnerability in CVE-2026-57948 (CVE-2026-57948). Confidential information can be exposed externally.
CVE-2026-13570 Cross-Site Scripting (XSS) in CVE-2026-13570 (CVE-2026-13570)
cross-site scripting in CVE-2026-13570 (CVE-2026-13570). Risk of unauthorized operations or information disclosure.
CVE-2026-13567 Cross-Site Scripting (XSS) in CVE-2026-13567 (CVE-2026-13567)
cross-site scripting in CVE-2026-13567 (CVE-2026-13567). Risk of unauthorized operations or information disclosure.
CVE-2026-13557 Cross-Site Scripting (XSS) in CVE-2026-13557 (CVE-2026-13557)
cross-site scripting in CVE-2026-13557 (CVE-2026-13557). Risk of unauthorized operations or information disclosure.
CVE-2026-13556 Cross-Site Scripting (XSS) in CVE-2026-13556 (CVE-2026-13556)
cross-site scripting in CVE-2026-13556 (CVE-2026-13556). Risk of unauthorized operations or information disclosure.
CVE-2026-13554 Cross-Site Scripting (XSS) in CVE-2026-13554 (CVE-2026-13554)
cross-site scripting in CVE-2026-13554 (CVE-2026-13554). Risk of unauthorized operations or information disclosure.
CVE-2026-10083 Vulnerability in wordpress (CVE-2026-10083)
vulnerability in wordpress (CVE-2026-10083). Successful exploitation can lead to full system takeover.
CVE-2026-13504 Cross-Site Scripting (XSS) in CVE-2026-13504 (CVE-2026-13504)
cross-site scripting in CVE-2026-13504 (CVE-2026-13504). Risk of unauthorized operations or information disclosure.
CVE-2026-13499 Cross-Site Scripting (XSS) in CVE-2026-13499 (CVE-2026-13499)
cross-site scripting in CVE-2026-13499 (CVE-2026-13499). Risk of unauthorized operations or information disclosure.
CVE-2026-6658 Cross-Site Scripting (XSS) in CVE-2026-6658 (CVE-2026-6658)
cross-site scripting in CVE-2026-6658 (CVE-2026-6658). Risk of unauthorized operations or information disclosure. Exploitable via ``data_mermaid``.
CVE-2026-8661 Cross-Site Scripting (XSS) in CVE-2026-8661 (CVE-2026-8661)
cross-site scripting in CVE-2026-8661 (CVE-2026-8661). Risk of unauthorized operations or information disclosure.
CVE-2026-50740 Cross-Site Scripting (XSS) in revive-adserver (CVE-2026-50740)
cross-site scripting in revive-adserver (CVE-2026-50740). Risk of unauthorized operations or information disclosure.
CVE-2026-50742 Cross-Site Scripting (XSS) in revive-adserver (CVE-2026-50742)
cross-site scripting in revive-adserver (CVE-2026-50742). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →