Lucene search
China National Vulnerability DatabaseCNVD-2022-68823HistoryMay 08, 2022 - 12:00 a.m.
PartKeepr Cross-Site Scripting Vulnerability
2022-05-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
partkeepr
cross-site scripting
vulnerability
electronic components
client side
api
data filtering
output checks
EPSS
0.001
Percentile
29.4%
PartKeepr is an inventory management software. Designed primarily for electronic components, PartKeepr version 1.4.0 suffers from a cross-site scripting vulnerability that stems from a lack of name parameters in multiple api ports of the edit module to filter user-supplied data and output data checks. An attacker could exploit the vulnerability to execute JavaScript code on the client side.
Related
osv
osv
CVE-2021-39390
2022-05-03 13:15:07
prion
prion
Cross site scripting
2022-05-03 13:15:00
cvelist
cvelist
CVE-2021-39390
2022-05-03 12:05:36
cve
cve
CVE-2021-39390
2022-05-03 13:15:07
nvd
nvd
CVE-2021-39390
2022-05-03 13:15:07