Lucene search
GitHub Advisory DatabaseGHSA-44XV-V98G-V79FHistoryNov 21, 2022 - 11:57 p.m.
URL XSS vulnerability due to outdated jquery in CMS
2022-11-2123:57:46
CWE-79
GitHub Advisory Database
github.com
13
url xss vulnerability
silverstripe framework
cms software
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
43.9%
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 2 of 3).
Affected configurations
Node
silverstripeadminRange1.0.0–1.11.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| silverstripe | admin | * | cpe:2.3:a:silverstripe:admin:*:*:*:*:*:*:*:* |
Related
friendsofphp
friendsofphp
CVE-2022-38146 - URL XSS vulnerability due to outdated jquery in CMS
2021-11-21 00:00:00
cvelist
cvelist
CVE-2022-38146
2022-11-21 00:00:00
osv
osv
CVE-2022-38146
2022-11-21 16:15:13
URL XSS vulnerability due to outdated jquery in CMS
2022-11-21 23:57:46
cve
cve
CVE-2022-38146
2022-11-21 16:15:13
prion
prion
Design/Logic Flaw
2022-11-21 16:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2022-11-23 10:37:41
nvd
nvd
CVE-2022-38146
2022-11-21 16:15:13
cnvd
cnvd
Silverstripe framework cross-site scripting vulnerability
2022-11-23 00:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
43.9%
Related for GHSA-44XV-V98G-V79F