Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-8629-83M5-RJ75
HistoryAug 25, 2022 - 12:00 a.m.

exceedone/exment and exceedone/laravel-admin Cross-site Scripting vulnerability

2022-08-2500:00:29
Google
osv.dev
11
exceedone
php8
php7
cross-site scripting
remote attacker

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

41.6%

JSON

Reflected cross-site scripting vulnerability in Exment ((PHP8) exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, (PHP7) exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier) allows a remote authenticated attacker to inject an arbitrary script.

Related

nvd 1
github 1
cve 1
cvelist 1
osv 1
prion 1
jvn 1
nvd
nvd
CVE-2022-38080
2022-08-24 09:15:08
github
github
exceedone/exment and exceedone/laravel-admin Cross-site Scripting vulnerability
2022-08-25 00:00:29
cve
cve
CVE-2022-38080
2022-08-24 09:15:08
cvelist
cvelist
CVE-2022-38080
2022-08-24 08:41:07
osv
osv
CVE-2022-38080
2022-08-24 09:15:08
prion
prion
Cross site scripting
2022-08-24 09:15:00
jvn
jvn
JVN#46239102: Multiple vulnerabilities in Exment
2022-08-24 00:00:00

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

41.6%

JSON
Related for OSV:GHSA-8629-83M5-RJ75
nvd1github1cve1cvelist1osv1prion1jvn1