Lucene search
China National Vulnerability DatabaseCNVD-2022-66693HistoryMay 20, 2022 - 12:00 a.m.
OctoPrint webcam stream test cross-site scripting vulnerability
2022-05-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
0.001 Low
EPSS
Percentile
40.6%
OctoPrint is an application that provides a fast web interface for controlling consumer 3D printers. A cross-site scripting vulnerability exists in versions prior to OctoPrint 1.8.0, which stems from a lack of filtering and escaping of data in the software webcam stream test. An attacker could use this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| octoprint octoprint | lt | 1.8.0 |
Related
cve
cve
CVE-2022-1432
2022-05-18 14:15:08
prion
prion
Cross site scripting
2022-05-18 14:15:00
nvd
nvd
CVE-2022-1432
2022-05-18 14:15:08
veracode
veracode
Cross-Site Scripting (XSS)
2022-05-19 08:21:12
osv
osv
Cross-site Scripting in OctoPrint
2022-05-19 00:00:30
CVE-2022-1432
2022-05-18 14:15:08
PYSEC-2022-201
2022-05-18 14:15:00
github
github
Cross-site Scripting in OctoPrint
2022-05-19 00:00:30
cvelist
cvelist
CVE-2022-1432 Cross-site Scripting (XSS) - Generic in octoprint/octoprint
2022-05-18 10:10:10
huntr
huntr
Cross-site Scripting (XSS) - Generic
2022-04-20 17:49:03