Lucene search
HistoryNov 23, 2022 - 3:15 a.m.
CVE-2022-37421
cve-2022-37421
silverstripe
cms
xss
vulnerability
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.9%
Silverstripe silverstripe/cms through 4.11.0 allows XSS.
Affected configurations
Node
silverstripesilverstripeRange3.0.0β4.11.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| silverstripe:silverstripe | silverstripe | lt | 4.11.3 |
References
Social References
More
Related
github
github
Silverstipe CMS Stored XSS in custom meta tags
2022-11-21 23:59:26
prion
prion
Cross site scripting
2022-11-23 03:15:00
osv
osv
CVE-2022-37421
2022-11-23 03:15:10
Silverstipe CMS Stored XSS in custom meta tags
2022-11-21 23:59:26
BIT-silverstripe-2022-37421
2024-03-06 11:04:49
cvelist
cvelist
CVE-2022-37421
2022-11-23 00:00:00
friendsofphp
friendsofphp
CVE-2022-37421 - Stored XSS in custom meta tags
2021-11-21 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2022-11-24 09:35:16
nvd
nvd
CVE-2022-37421
2022-11-23 03:15:10
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.9%
Related for CVE-2022-37421