Lucene search
Veracode Vulnerability DatabaseVERACODE:36105HistoryJun 24, 2022 - 3:21 a.m.
Cross-site Scripting (XSS)
2022-06-2403:21:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
cross-site scripting
github.com/zalando/skipper
sanitization
query predicate
maliciously crafted request
EPSS
0.001
Percentile
33.9%
github.com/zalando/skipper is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization allowing an attacker to bypass a query predicate via a maliciously crafted request.
Related
github
github
Query predicate bypass in Zalando Skipper
2022-06-24 00:00:32
osv
osv
Query predicate bypass in Zalando Skipper
2022-06-24 00:00:32
Query predicate bypass in Zalando Skipper in github.com/zalando/skipper
2024-08-21 15:11:33
CVE-2022-34296
2022-06-23 17:15:18
nvd
nvd
CVE-2022-34296
2022-06-23 17:15:18
prion
prion
Cross site request forgery (csrf)
2022-06-23 17:15:00
cve
cve
CVE-2022-34296
2022-06-23 17:15:18
cvelist
cvelist
CVE-2022-34296
2022-06-22 12:57:53