CWE-85 - CERT CVE

CWE-85 - Doubled Character XSS Manipulations

The web application does not filter user-controlled input for executable script disguised using doubling of the involved characters.

CAPEC ID Naziv
CAPEC-245 XSS Using Doubled Characters