CVE-2022-27308

2022-05-0917:29:56

mitre

www.cve.org

xss

phprojekt

arbitrary

html

title

vulnerability

execution

EPSS

0.001

Percentile

51.1%

JSON

A stored cross-site scripting (XSS) vulnerability in PHProjekt PhpSimplyGest v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a project title.

References

packetstormsecurity.com/files/166966/PHProjekt-PhpSimplyGest-MyProjects-1.3.0-Cross-Site-Scripting.html

phprojekt.altervista.org/phpsimplygest130/

github.com/robyfofo/PhpSimplyGest

EPSS

0.001

Percentile

51.1%

JSON

Related for CVELIST:CVE-2022-27308