Home
Web Scanner
Link Checker
SSL Checker
IP Lookup
Whois
News
CVEs
CWEs
Alerts
Data encryption
Download
Security tools
Security info
Language

Home/Alerts/Alert detail/

Cross Site Scripting (Persistent) - Prime

Risk:
Informational

Type:
Active

CWE:
CWE-79

Latest Security News

Infostealer campaign compromises 10 npm packages, targets devs
Chinese FamousSparrow hackers deploy upgraded malware in attacks
Windows 11 KB5053656 update released with 38 changes and fixes
Microsoft: New Windows scheduled task will launch Office apps faster
New Morphing Meerkat Phishing Kit Mimics 114 Brands Using Victims' DNS Email Records
The 4 WordPress flaws hackers targeted the most in Q1 2025
Mozilla warns Windows users of critical Firefox sandbox escape flaw
WhatsApp's Meta AI is now rolling out in Europe, and it can't be turned off
Hackers Repurpose RansomHub's EDRKillShifter in Medusa, BianLian, and Play Attacks
Recent Windows Server 2025 updates cause Remote Desktop freezes

Latest CVE List

CVE-2025-2783 Google Chromium Mojo Sandbox Escape Vulnerability
CVE-2019-9874 Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
CVE-2019-9875 Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
CVE-2025-30154 reviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability
CVE-2025-1316 Edimax IC-7100 IP Camera OS Command Injection Vulnerability
CVE-2024-48248 NAKIVO Backup and Replication Absolute Path Traversal Vulnerability
CVE-2017-12637 SAP NetWeaver Directory Traversal Vulnerability
CVE-2025-24472 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
CVE-2025-30066 tj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability
CVE-2025-24201 Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability

Top Alert List

CSP
Content Security Policy (CSP) Header Not Set
MediumAbsence of Anti-CSRF Tokens
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
MediumMissing Anti-clickjacking Header
MediumContent Security Policy (CSP) Header Not Set
LowTimestamp Disclosure - Unix
InformationalRe-examine Cache-control Directives
LowCSP: X-Content-Security-Policy

Common CWEs

CWE-277 Insecure Inherited Permissions
LowCWE-783 Operator Precedence Logic Error
MediumCWE-771 Missing Reference to Active Allocated Resource
CWE-593 Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
CWE-82 Improper Neutralization of Script in Attributes of IMG Tags in a Web Page
CWE-218 DEPRECATED: Failure to provide confidentiality for stored data
CWE-1338 Improper Protections Against Hardware Overheating
CWE-1066 Missing Serialization Control Element
CWE-1395 Dependency on Vulnerable Third-Party Component
CWE-336 Same Seed in Pseudo-Random Number Generator (PRNG)

Free online web security scanner

Don't show website scan report rating on the leaderboard

© 2025 ScyScan | Disclaimer | Feedback | Contact Us |