Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-F26E7495E84091D28896DE9ED0FA4D29HistoryMay 24, 2022 - 12:00 a.m.
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
2022-05-2400:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
8
0.001 Low
EPSS
Percentile
24.1%
Stored xss bug in GitHub repository gogs/gogs prior to 0.12.7. As the repo is public, any user can view the report and when open the attachment then xss is executed. This bug allow executed any javascript code in victim account .
| CPE | Name | Operator | Version |
|---|---|---|---|
| go/gogs.io/gogs | lt | 0.12.7 |
Related
freebsd
freebsd
gogs -- XSS in issue attachments
2022-04-12 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2022-05-06 08:40:04
cvelist
cvelist
CVE-2022-1464 Stored xss bug in gogs/gogs
2022-05-05 13:45:12
github
github
Cross-site Scripting in Gogs
2022-05-24 20:48:14
huntr
huntr
Stored xss bug
2022-04-12 07:07:18
openvas
openvas
Gogs < 0.12.7 XSS Vulnerability
2022-05-09 00:00:00
nessus
nessus
alpinelinux
alpinelinux
CVE-2022-1464
2022-05-05 14:15:08
osv
osv
Cross-site Scripting in Gogs
2022-05-24 20:48:14
CVE-2022-1464
2022-05-05 14:15:08
prion
prion
Design/Logic Flaw
2022-05-05 14:15:00
nvd
nvd
CVE-2022-1464
2022-05-05 14:15:08
cve
cve
CVE-2022-1464
2022-05-05 14:15:08