CWE-83: CWE-83

Total CVEs

Critical

High

7.1

Avg CVSS

Yearly Trend

2026

2025

2023

Top Affected Vendors

1 Xwiki 2

2 Paloaltonetworks 1

3 Saleor 1

4 Cvat 1

All CWE-83 CVEs (5)

CVE-2023-37908

9.0

CVE-2023-37908 is a cross-site scripting (XSS) vulnerability in XWiki Rendering that allows attackers to inject arbitrary HTML/JavaScript via maliciou...

Oct 25, 2023

CVE-2023-32070

9.0

This vulnerability in XWiki Platform allows attackers to inject malicious scripts through HTML attributes and link URLs, enabling cross-site scripting...

May 10, 2023

CVE-2025-4615

7.2

An authenticated administrator can bypass system restrictions in Palo Alto Networks PAN-OS management web interface to execute arbitrary commands. Thi...

Oct 9, 2025

CVE-2026-23516

5.4

This cross-site scripting (XSS) vulnerability in CVAT allows attackers to execute arbitrary JavaScript in victims' browser sessions by creating malici...

Jan 21, 2026

CVE-2026-22849

4.8

This stored cross-site scripting (XSS) vulnerability in Saleor e-commerce platform allows malicious staff members to inject HTML/JavaScript into rich ...

Jan 21, 2026

About CWE-83 (CWE-83)

Our database tracks 5 CVEs classified as CWE-83, with 2 rated critical and 1 rated high severity. The average CVSS score for CWE-83 vulnerabilities is 7.1.

External reference: View CWE-83 on MITRE CWE →

Monitor CWE-83 Vulnerabilities

Get alerted when new CWE-83 CVEs affect your infrastructure.

Start Monitoring Free