CWE-79

LLMs often generate frontend code that renders user input without sanitization, enabling attackers to inject malicious scripts that steal sessions or redirect u...

Verified by Precogs Threat Research
BASE SCORE
7.5 CRITICAL

Precogs AI Insight

"Precogs AI identifies unsanitized output in AI-generated code and applies context-appropriate encoding (HTML, JavaScript, URL) via AutoFix PRs."

EXPLOIT PROBABILITYHigh
PUBLIC POCAvailable

What is CWE-79 (Cross-site Scripting (XSS))?

LLMs often generate frontend code that renders user input without sanitization, enabling attackers to inject malicious scripts that steal sessions or redirect users.

Vulnerability Insights

In the context of vulnerabilities in ai-generated code, this vulnerability poses significant risk because compiled binaries and complex AI logic cannot be easily patched without vendor cooperation. Organizations relying on third-party software must use structural analysis tools to detect these flaws.

Impact on Systems

  • Session Hijacking: Theft of active authentication cookies
  • Defacement: Altering the appearance or content of the vulnerable page
  • Phishing: Presenting deceptive login forms within the trusted domain

Real-World Attack Scenario

An attacker crafts a malicious URL containing a JavaScript payload in the q parameter and sends it to a victim. When the victim clicks the link, the server reflects the unsanitized payload back into the HTML response. The victim's browser executes the script, which steals their session cookie and sends it to the attacker's server, granting the attacker full access to the victim's account.

Code Examples

Vulnerable Implementation

app.get('/search', (req, res) => {
  const query = req.query.q;
  // VULNERABLE: Unsanitized input rendered directly in HTML
  res.send('<h1>Search Results for: ' + query + '</h1>');
});

Secure Alternative

app.get('/search', (req, res) => {
  const query = req.query.q;
  // SECURE: Use a secure escaping library or templating engine
  const safeQuery = escapeHtml(query);
  res.send('<h1>Search Results for: ' + safeQuery + '</h1>');
});

Remediation

Ensure robust input validation, boundary checking, and adherence to secure architecture frameworks when designing AI-Generated Code solutions. Use automated code scanning or binary analysis to detect flaws early in the SDLC.

CVEs Classified Under CWE-7925 vulnerabilities

The following CVEs have been classified under CWE-79 (Cross-site Scripting (XSS)). Each CVE represents a specific vulnerability instance of this weakness type.

CVE-2026-32890Anchorr is a Discord bot for requesting movies and TV shows and receiving notifications when items are added to a media server
CVSS 9.6CRITICALMar 20, 2026
CVE-2026-31938jsPDF is a library to generate PDFs in JavaScript
CVSS 9.6CRITICALMar 18, 2026
CVE-2026-32626AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting
CVSS 9.6CRITICALMar 16, 2026
CVE-2026-33136WeGIA is a web manager for charitable institutions
CVSS 9.3CRITICALMar 20, 2026
CVE-2026-33135WeGIA is a web manager for charitable institutions
CVSS 9.3CRITICALMar 20, 2026
CVE-2026-32940SiYuan is a personal knowledge management system
CVSS 9.3CRITICALMar 20, 2026
CVE-2026-32754FreeScout is a free help desk and shared inbox built with PHP's Laravel framework
CVSS 9.3CRITICALMar 19, 2026
CVE-2026-32703OpenProject is an open-source, web-based project management software
CVSS 9CRITICALMar 18, 2026
CVE-2026-33172Statamic is a Laravel and Git powered content management system (CMS)
CVSS 8.7HIGHMar 20, 2026
CVE-2026-33346OpenEMR is a free and open source electronic health records and medical practice management application
CVSS 8.7HIGHMar 19, 2026
CVE-2026-32721LuCI is the OpenWrt Configuration Interface
CVSS 8.6HIGHMar 19, 2026
CVE-2026-33932Stored XSS in OpenEMR CCDA document preview before 8
CVSS 7.6HIGHMar 26, 2026
CVE-2024-42210A Stored cross-site scripting (XSS) vulnerability affects HCL Unica Marketing Operations v12
CVSS 7.6HIGHMar 19, 2026
CVE-2026-32728Parse Server is an open source backend that can be deployed to any infrastructure that can run Node
CVSS 7.6HIGHMar 18, 2026
CVE-2025-10573Stored XSS in Ivanti Endpoint Manager
CVSS 7.5HIGHMar 21, 2026
CVE-2013-20006Qool CMS contains multiple persistent cross-site scripting vulnerabilities in several administrative scripts where POST parameters are not properly sanitized before being stored and returned to users
CVSS 7.5HIGHMar 16, 2026
CVE-2026-33080Filament is a collection of full-stack components for accelerated Laravel development
CVSS 7.3HIGHMar 20, 2026
CVE-2026-3003The Vagaro Booking Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘vagaro_code’ parameter in all versions up to, and including, 0
CVSS 7.2HIGHMar 21, 2026
CVE-2026-2440The SurveyJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 2
CVSS 7.2HIGHMar 21, 2026
CVE-2026-3368The Injection Guard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via malicious query parameter names in all versions up to and including 1
CVSS 7.2HIGHMar 21, 2026
CVE-2026-1238The SlimStat Analytics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fh' (fingerprint) parameter in all versions up to, and including, 5
CVSS 7.2HIGHMar 19, 2026
CVE-2026-3090The Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘event_type’ parameter in all versions up to, and including, 3
CVSS 7.2HIGHMar 18, 2026
CVE-2016-20032ZKTeco ZKAccess Security System 5
CVSS 7.2HIGHMar 16, 2026
CVE-2015-20118Next Click Ventures RealtyScript 4
CVSS 7.2HIGHMar 16, 2026
CVE-2015-20115Next Click Ventures RealtyScript 4
CVSS 7.2HIGHMar 16, 2026

Supplemental Intelligence & References

📋 OWASP Top 10

📖 Security Guides

🔗 External References