1. Home
  2. Weaknesses
  3. CWE-84

CWE-84: Improper Neutralization of Encoded URI Schemes in a Web Page

ID CWE-84
Abstraction Variant
Structure Simple
Status Draft
Number of CVEs 6
Detail Dashboard Vulnerabilities Web & Social
The web application improperly neutralizes user-controlled input for executable script disguised with URI encodings.

Modes of Introduction

Phase Note
Implementation

Applicable Platforms

Type Class Name Prevalence
Language Not Language-Specific

Relationships

View Weakness
# ID View Status # ID Name Abstraction Structure Status
CWE-1000 Research Concepts Draft CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Base Simple Stable

CVEs Published

Based on CVE published date

CVSS Severity

CVSS Severity - By Year

CVSS Base Score

# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date