Lucene search
China National Vulnerability DatabaseCNVD-2022-08209HistoryJan 17, 2022 - 12:00 a.m.
Halo Cross-Site Scripting Vulnerability (CNVD-2022-08209)
2022-01-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
26.9%
Halo is a personal blogging system for individual developers. Halo suffers from a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data in the WEB application, which could be exploited by attackers to execute client-side code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Halo Halo >=1.0.0, | le | 1.4.17 |
Related
osv
osv
CVE-2022-22125
2022-01-13 17:15:07
prion
prion
Cross site scripting
2022-01-13 17:15:00
nvd
nvd
CVE-2022-22125
2022-01-13 17:15:07
cvelist
cvelist
CVE-2022-22125 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Tag
2022-01-11 00:00:00
cve
cve
CVE-2022-22125
2022-01-13 17:15:07