CWE,Sink identifier,Label
CWE-079,html xss,Cross-site scripting