CWE,Sink identifier,Label
CWE-079,html-injection js-injection,Cross-site scripting