Login Sign Up

CWE-87: CWE-87

5
Total CVEs
3
Critical
0
High
8.3
Avg CVSS

Yearly Trend

2025
1
2024
1
2023
3

Top Affected Vendors

1 Xwiki 3
2 Connekthq 1

All CWE-87 CVEs (5)

CVE-2023-35156
9.6

This is a cross-site scripting (XSS) vulnerability in XWiki Platform that allows attackers to inject malicious JavaScript via specially crafted URLs. ...

Jun 23, 2023
CVE-2023-35158
9.6

This is a cross-site scripting (XSS) vulnerability in XWiki Platform that allows attackers to inject malicious JavaScript via specially crafted URLs. ...

Jun 23, 2023
CVE-2023-35160
9.6

This vulnerability allows attackers to inject malicious JavaScript into XWiki pages by crafting URLs with payloads in the resubmit template parameters...

Jun 23, 2023
CVE-2025-8561
6.4

The Ova Advent WordPress plugin has a stored XSS vulnerability in all versions up to 1.1.7. Authenticated attackers with contributor-level access or h...

Oct 15, 2025
CVE-2024-8505
6.4

This stored XSS vulnerability in the WordPress Infinite Scroll plugin allows authenticated attackers with Contributor access or higher to inject malic...

Oct 2, 2024

About CWE-87 (CWE-87)

Our database tracks 5 CVEs classified as CWE-87, with 3 rated critical and 0 rated high severity. The average CVSS score for CWE-87 vulnerabilities is 8.3.

External reference: View CWE-87 on MITRE CWE →

Monitor CWE-87 Vulnerabilities

Get alerted when new CWE-87 CVEs affect your infrastructure.

Start Monitoring Free