Lucene search
Veracode Vulnerability DatabaseVERACODE:34028HistoryFeb 07, 2022 - 1:50 p.m.
Cross-site Scripting (XSS)
2022-02-0713:50:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
30.1%
ptrofimov/beanstalk_console is vulnerable to cross-site scripting. The vulnerability exists in include.php due to improper sanitizing of user inputs which allows an attacker to insert and execute arbitrary Javascript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ptrofimov/beanstalk_console | le | 1.7.12 | |
| ptrofimov/beanstalk_console | le | 1.7.12 |
References
github.com/advisories/GHSA-gj85-pvp5-mvf9
github.com/ptrofimov/beanstalk_console/blob/95d5808836034835fc33500c6a82276277fabdf9/lib/include.php#L22
github.com/ptrofimov/beanstalk_console/commit/e351c8260ec1d3718d9e475ee57c7e12c47f19da
github.com/ptrofimov/beanstalk_console/pull/181
huntr.dev/bounties/9af1c35e-3f74-4c93-a241-e8be01335ec7
Related
cvelist
cvelist
osv
osv
Cross-site Scripting in Beanstalk console
2022-02-06 00:00:54
CVE-2022-0501
2022-02-05 16:15:07
prion
prion
Cross site scripting
2022-02-05 16:15:00
github
github
Cross-site Scripting in Beanstalk console
2022-02-06 00:00:54
cve
cve
CVE-2022-0501
2022-02-05 16:15:07
huntr
huntr
Cross-site Scripting (XSS) - Reflected in ptrofimov/beanstalk_console
2022-01-31 09:45:28
nvd
nvd
CVE-2022-0501
2022-02-05 16:15:07