Lucene search
CVE-2022-41431
🗓️ 17 Oct 2022 21:10:15Reported by mitreType 
cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 24 Views🌐 WEB
xzs v3.8.0 XSS vulnerability in /admin/question/edi
Show more
| Reporter | Title | Published | Views | Family All 4 |
|---|---|---|---|---|
 | CVE-2022-41431 | 17 Oct 202221:15 | – | nvd |
 | CVE-2022-41431 | 17 Oct 202200:00 | – | cvelist |
 | Cross site scripting | 17 Oct 202221:15 | – | prion |
 | CVE-2022-41431 | 17 Oct 202221:15 | – | osv |
| Source | Link |
|---|---|
| github | www.github.com/mindskip/xzs |
| github | www.github.com/mindskip/xzs.aa |
| sudsy-fish-73d | www.sudsy-fish-73d.notion.site/XSS-about-xzs-system-31f689f2f3014ba99f12423fae521e49 |
| mindskip | www.mindskip.net/xzs.html%3B |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| Title | request body | /admin/question/edit | Cross-site scripting (XSS) vulnerability that allows execution of arbitrary scripts via the Title field. | CWE-79 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 Oct 2022 21:15Current
5.3Medium risk
Vulners AI Score5.3
CVSS35.4
EPSS0.00106