Lucene search
MitreCVE-2022-38147HistoryNov 23, 2022 - 3:15 a.m.
CVE-2022-38147
2022-11-2303:15:10
CWE-79
mitre
web.nvd.nist.gov
53
6
cve-2022-38147
silverstripe
framework
xss
vulnerability
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
31.7%
Silverstripe silverstripe/framework through 4.11 allows XSS (issue 3 of 3).
Affected configurations
Node
silverstripeframeworkRange1.0.0β1.11.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| silverstripe | framework | * | cpe:2.3:a:silverstripe:framework:*:*:*:*:*:*:*:* |
References
Social References
More
Related
prion
prion
Cross site scripting
2022-11-23 03:15:00
nvd
nvd
CVE-2022-38147
2022-11-23 03:15:10
cvelist
cvelist
CVE-2022-38147
2022-11-23 00:00:00
github
github
XSS via uploaded gpx file
2022-11-21 23:58:07
veracode
veracode
Cross-site Scripting (XSS)
2022-11-24 03:28:10
osv
osv
XSS via uploaded gpx file
2022-11-21 23:58:07
friendsofphp
friendsofphp
CVE-2022-38147 - XSS via uploaded gpx file
2021-11-21 00:00:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
31.7%
Related for CVE-2022-38147