CWE-176: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description: CWE-176 describes the failure to properly neutralize user-controllable input during the output of web pages, leading to cross-site scripting vulnerabilities.