Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-69474
HistorySep 02, 2022 - 12:00 a.m.

Apache OFBiz Cross-Site Scripting Vulnerability (CNVD-2022-69474)

2022-09-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
apache ofbiz
erp
xss
vulnerability
security
attack

0.002 Low

EPSS

Percentile

55.3%

JSON

Apache OFBiz is an enterprise resource planning (ERP) system from the Apache Foundation in the United States. The system provides a suite of Java-based web application components and tools. Apache OFBiz 18.12.05 and earlier versions contain a security vulnerability that can be exploited by unauthenticated attackers to perform stored XSS attacks in order to inject malicious loads and execute with stored XS.

CPENameOperatorVersion
apache ofbizle18.12.05

Related

nvd 1
cve 1
prion 1
cvelist 1
nvd
nvd
CVE-2022-25370
2022-09-02 07:15:07
cve
cve
CVE-2022-25370
2022-09-02 07:15:07
prion
prion
Cross site scripting
2022-09-02 07:15:00
cvelist
cvelist
CVE-2022-25370 Unauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz
2022-09-02 07:10:16

0.002 Low

EPSS

Percentile

55.3%

JSON
Related for CNVD-2022-69474
nvd1cve1prion1cvelist1