Lucene search
China National Vulnerability DatabaseCNVD-2022-22245HistoryMar 14, 2022 - 12:00 a.m.
Orchard Core Cross-Site Scripting Vulnerability (CNVD-2022-22245)
2022-03-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
21.6%
Net Core, an open source modular and multi-tenant application framework built using Asp.Net Core, and a content management system (Cms) built on top of the framework.A cross-site scripting vulnerability exists in Orchard Core, which stems from the lack of proper validation of client-side data in the WEB application. An attacker could exploit the vulnerability to execute client-side code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| orchardcore orchard core | lt | 1.3.0 |
Related
nvd
nvd
CVE-2022-0822
2022-03-11 01:15:07
cve
cve
CVE-2022-0822
2022-03-11 01:15:07
prion
prion
Cross site scripting
2022-03-11 01:15:00
veracode
veracode
Cross-site Scripting (XSS)
2022-03-14 05:56:47
huntr
huntr
Cross-site Scripting (XSS) - Reflected in orchardcms/orchardcore
2022-02-11 13:15:19
osv
osv
CVE-2022-0822
2022-03-11 01:15:07
cvelist
cvelist