Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-4638
HistoryDec 21, 2022 - 10:15 p.m.

Cross site scripting

2022-12-2122:15:00
PRIOn knowledge base
www.prio-n.com
2
vulnerability
collective.contact.widget
remote attack
cross site scripting
patch
identifier
nvd

0.001 Low

EPSS

Percentile

25.5%

JSON

A vulnerability classified as problematic was found in collective.contact.widget up to 1.12. This vulnerability affects the function title of the file src/collective/contact/widget/widgets.py. The manipulation leads to cross site scripting. The attack can be initiated remotely. The name of the patch is 5da36305ca7ed433782be8901c47387406fcda12. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216496.

CPENameOperatorVersion
collective.contact.widgetlt1.12

Related

veracode 1
osv 3
nvd 1
cvelist 1
cve 1
github 1
veracode
veracode
Cross-site Scripting (XSS)
2022-12-23 08:49:25
osv
osv
CVE-2022-4638
2022-12-21 22:15:08
PYSEC-2022-42988
2022-12-21 22:15:00
collective.contact.widget is vulnerable to cross-site scripting
2022-12-22 00:30:36
nvd
nvd
CVE-2022-4638
2022-12-21 22:15:08
cvelist
cvelist
CVE-2022-4638 collective.contact.widget widgets.py title cross site scripting
2022-12-21 00:00:00
cve
cve
CVE-2022-4638
2022-12-21 22:15:08
github
github
collective.contact.widget is vulnerable to cross-site scripting
2022-12-22 00:30:36

0.001 Low

EPSS

Percentile

25.5%

JSON
Related for PRION:CVE-2022-4638
veracode1osv3nvd1cvelist1cve1github1