CWE-83
Improper Neutralization of Script in Attributes in a Web Page
The product does not neutralize or incorrectly neutralizes javascript: or other URIs from dangerous attributes within tags, such as onmouseover, onload, onerror, or style.
Official CWE-83 definition at MITREImpactr finds and proves weaknesses like CWE-83 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist