CVE-2022-34562

2024-04-2215:15:46

[email protected]

web.nvd.nist.gov

cross-site scripting

web scripts

html

status box

crafted payload

nvd

cve-2022-34562

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the status box.

References

mohammedshine.github.io/vulnresearch.html

v4.phpfox.com/