Lucene search
MitreCVE-2022-38146HistoryNov 21, 2022 - 4:15 p.m.
CVE-2022-38146
2022-11-2116:15:13
CWE-79
mitre
web.nvd.nist.gov
47
2
silverstripe
framework
4.11
xss
cve-2022-38146
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
5.1
Confidence
High
EPSS
0.001
Percentile
43.9%
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3).
Affected configurations
Node
silverstripeframeworkRange≤4.11.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| silverstripe | framework | * | cpe:2.3:a:silverstripe:framework:*:*:*:*:*:*:*:* |
References
Social References
More
Related
friendsofphp
friendsofphp
CVE-2022-38146 - URL XSS vulnerability due to outdated jquery in CMS
2021-11-21 00:00:00
github
github
URL XSS vulnerability due to outdated jquery in CMS
2022-11-21 23:57:46
cvelist
cvelist
CVE-2022-38146
2022-11-21 00:00:00
osv
osv
CVE-2022-38146
2022-11-21 16:15:13
URL XSS vulnerability due to outdated jquery in CMS
2022-11-21 23:57:46
prion
prion
Design/Logic Flaw
2022-11-21 16:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2022-11-23 10:37:41
nvd
nvd
CVE-2022-38146
2022-11-21 16:15:13
cnvd
cnvd
Silverstripe framework cross-site scripting vulnerability
2022-11-23 00:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
5.1
Confidence
High
EPSS
0.001
Percentile
43.9%
Related for CVE-2022-38146