Login Sign Up

CWE-97: CWE-97

4
Total CVEs
1
Critical
2
High
7.5
Avg CVSS

Yearly Trend

2025
3
2024
1

Top Affected Vendors

1 Kentico 1
2 Strongshop 1

All CWE-97 CVEs (4)

CVE-2025-35996
9.0

KUNBUS PiCtory versions 2.11.1 and earlier contain a stored cross-site scripting (XSS) vulnerability where authenticated attackers can upload speciall...

May 1, 2025
CVE-2023-53934
7.5

This CVE describes a denial-of-service vulnerability in Kentico Xperience's GetResource handler where improper input validation allows attackers to se...

Dec 18, 2025
CVE-2024-37621
7.2

StrongShop v1.0 contains a Server-Side Template Injection (SSTI) vulnerability in the /shippingOptionConfig/index.blade.php component. This allows att...

Jun 17, 2024
CVE-2025-36558
6.1

KUNBUS PiCtory versions 2.11.1 and earlier contain a cross-site scripting (XSS) vulnerability in the sso_token parameter used for authentication. An a...

May 1, 2025

About CWE-97 (CWE-97)

Our database tracks 4 CVEs classified as CWE-97, with 1 rated critical and 2 rated high severity. The average CVSS score for CWE-97 vulnerabilities is 7.5.

External reference: View CWE-97 on MITRE CWE →

Monitor CWE-97 Vulnerabilities

Get alerted when new CWE-97 CVEs affect your infrastructure.

Start Monitoring Free