Weaknesses of type CWE-81
9 resultsCVE-2022-4137HIGHKeycloak: reflected xss attackEPSS 1.1%CVE-2024-6892MEDIUMJournyx Reflected Cross Site ScriptingEPSS 0.7%CVE-2019-25027MEDIUMReflected cross-site scripting in default RouteNotFoundError view in Vaadin 10 and 11-13EPSS 0.7%CVE-2022-4361CRITICALKeycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC provideEPSS 0.6%CVE-2024-47882MEDIUMOpenRefine's error page lacks escaping, leading to potential Cross-site Scripting on import of malicious projectEPSS 0.5%CVE-2025-0883LOWvulnerability has been discovered in OpenText™ Service Manager.EPSS 0.3%CVE-2024-47064MEDIUMComputer Vision Annotation Tool (CVAT) contains a reflected XSS via request endpointsEPSS 0.3%CVE-2025-24344MEDIUMA vulnerability in the error notification messages of the web application of ctrlX OS allows a remote unauthenticated attacker to inject arbEPSS 0.3%CVE-2026-41568MEDIUMMoby: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swapEPSS 0.1%