Lucene search
Veracode Vulnerability DatabaseVERACODE:37526HistoryOct 12, 2022 - 8:11 a.m.
Cross-site Scripting (XSS)
2022-10-1208:11:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
gogs
cross-site scripting
xss
remote attacker
javascript
admin privileges
account takeover
0.005 Low
EPSS
Percentile
75.6%
gogs is vulnerable to cross-site scripting (XSS). A remote attacker is able to execute malicious JavaScript via providing an XSS payload through the full name parameter, which allows the attacker to gain admin privileges and takeover the account.
Related
gitlab
gitlab
nvd
nvd
CVE-2022-32174
2022-10-11 15:15:09
osv
osv
Gogs vulnerable to Cross-site Scripting
2022-10-11 19:00:29
CVE-2022-32174
2022-10-11 15:15:09
cve
cve
CVE-2022-32174
2022-10-11 15:15:09
alpinelinux
alpinelinux
CVE-2022-32174
2022-10-11 15:15:09
github
github
Gogs vulnerable to Cross-site Scripting
2022-10-11 19:00:29
cvelist
cvelist
CVE-2022-32174 Gogs - XSS
2022-10-06 00:00:00
prion
prion
Cross site scripting
2022-10-11 15:15:00
ibm
ibm