Lucene search
PRIOn knowledge basePRION:CVE-2022-23058HistoryJun 22, 2022 - 8:15 a.m.
Cross site scripting
2022-06-2208:15:00
PRIOn knowledge base
www.prio-n.com
9
ERPNext in versions v12.0.9-v13.0.3 are affected by a stored XSS vulnerability that allows low privileged users to store malicious scripts in the ‘username’ field in ‘my settings’ which can lead to full account takeover.
Related
osv
osv
CVE-2022-23058
2022-06-22 08:15:07
cve
cve
CVE-2022-23058
2022-06-22 08:15:07
nvd
nvd
CVE-2022-23058
2022-06-22 08:15:07
cvelist
cvelist
CVE-2022-23058 ERPNext - Stored XSS in My Settings
2022-05-19 00:00:00