Description Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section. Remediation References CVE-2016-5682 Related Vulnerabilities XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29519) WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.4.4) MySQL CVE-2020-14878 Vulnerability (CVE-2020-14878) WordPress Plugin WP Photo Album Plus Multiple Cross-Site Scripting Vulnerabilities (5.4.4) MediaWiki CVE-2023-29139 Vulnerability (CVE-2023-29139) Severity Medium Classification CVE-2016-5682 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities