Lucene search
China National Vulnerability DatabaseCNVD-2022-85508HistoryNov 29, 2022 - 12:00 a.m.
OrchardCMS Cross-Site Scripting Vulnerability
2022-11-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
orchardcms
cross-site scripting
vulnerability
asp.net core
content management system
xss
attackers
low privileges
0.002 Low
EPSS
Percentile
52.5%
OrchardCMS is an open source modular and multi-tenant application framework built using ASP.NET Core, and a content management system (CMS) built on top of the framework. orchardcore OrchardCMS versions prior to 1.10.3 are vulnerable to cross-site scripting, which can be exploited by attackers with low privileges to launch XSS attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| orchardcms orchardcms | lt | 1.10.3 |
Related
cvelist
cvelist
CVE-2022-37720
2022-11-25 00:00:00
cve
cve
CVE-2022-37720
2022-11-25 16:15:10
prion
prion
Cross site scripting
2022-11-25 16:15:00
nvd
nvd
CVE-2022-37720
2022-11-25 16:15:10