CWE-87
Improper Neutralization of Alternate XSS Syntax
The product does not neutralize or incorrectly neutralizes user-controlled input for alternate script syntax.
Official CWE-87 definition at MITREImpactr finds and proves weaknesses like CWE-87 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist