Lucene search
China National Vulnerability DatabaseCNVD-2022-07637HistoryJan 27, 2022 - 12:00 a.m.
Grav Cross-Site Scripting Vulnerability (CNVD-2022-07637)
2022-01-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
21.6%
A cross-site scripting vulnerability exists in versions of Grav prior to 1.7.28, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| getgrav grav | lt | 1.7.28 |
Related
github
github
Cross-site Scripting in grav
2022-01-27 18:27:56
osv
osv
CVE-2022-0268
2022-01-25 11:15:08
Cross-site Scripting in grav
2022-01-27 18:27:56
cvelist
cvelist
CVE-2022-0268 Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-25 10:40:11
prion
prion
Cross site scripting
2022-01-25 11:15:00
nvd
nvd
CVE-2022-0268
2022-01-25 11:15:08
cve
cve
CVE-2022-0268
2022-01-25 11:15:08
veracode
veracode
Cross-site Scripting (XSS)
2022-01-26 03:05:36
huntr
huntr
Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-02 22:01:57