Lucene search
China National Vulnerability DatabaseCNVD-2022-86396HistoryNov 24, 2022 - 12:00 a.m.
Backdrop CMS Card Cross-Site Scripting Vulnerability
2022-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
backdrop cms
cross-site scripting
vulnerability
user-supplied data
xss attacks
security issue
0.007 Low
EPSS
Percentile
80.7%
Backdrop CMS is an open source content management system (CMS). version 1.23.0 of Backdrop CMS Card contains a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data, which could be exploited to inject cross-site code and launch XSS attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| backdrop cms backdrop cms | eq | 1.23.0 |
Related
nvd
nvd
CVE-2022-42094
2022-11-22 13:15:14
osv
osv
CVE-2022-42094
2022-11-22 13:15:14
Cross-site Scripting in Backdrop CMS
2022-11-22 15:30:26
cve
cve
CVE-2022-42094
2022-11-22 13:15:14
veracode
veracode
Cross-site Scripting (XSS)
2022-11-29 03:14:57
prion
prion
Cross site scripting
2022-11-22 13:15:00
nuclei
nuclei
Backdrop CMS version 1.23.0 - Stored Cross Site Scripting
2023-04-21 08:56:01
github
github
Cross-site Scripting in Backdrop CMS
2022-11-22 15:30:26
cvelist
cvelist
CVE-2022-42094
2022-11-22 00:00:00