Lucene search
CVE-2022-4859
A cross site scripting vulnerability in Joget up to 7.0.33 allows remote attackers to manipulate firstName/lastName argument via submitForm function in UserProfileMenu.java. Upgrade to 7.0.34 to mitigate. (CVE-2022-4859
Show more
| Reporter | Title | Published | Views | Family All 4 |
|---|---|---|---|---|
 | CVE-2022-4859 Joget User Profile Menu UserProfileMenu.java submitForm cross site scripting | 30 Dec 202211:38 | – | cvelist |
 | CVE-2022-4859 | 30 Dec 202212:15 | – | osv |
 | CVE-2022-4859 | 30 Dec 202212:15 | – | nvd |
 | Cross site scripting | 30 Dec 202212:15 | – | prion |
[
{
"vendor": "n/a",
"product": "Joget",
"versions": [
{
"version": "7.0.0",
"status": "affected"
},
{
"version": "7.0.1",
"status": "affected"
},
{
"version": "7.0.2",
"status": "affected"
},
{
"version": "7.0.3",
"status": "affected"
},
{
"version": "7.0.4",
"status": "affected"
},
{
"version": "7.0.5",
"status": "affected"
},
{
"version": "7.0.6",
"status": "affected"
},
{
"version": "7.0.7",
"status": "affected"
},
{
"version": "7.0.8",
"status": "affected"
},
{
"version": "7.0.9",
"status": "affected"
},
{
"version": "7.0.10",
"status": "affected"
},
{
"version": "7.0.11",
"status": "affected"
},
{
"version": "7.0.12",
"status": "affected"
},
{
"version": "7.0.13",
"status": "affected"
},
{
"version": "7.0.14",
"status": "affected"
},
{
"version": "7.0.15",
"status": "affected"
},
{
"version": "7.0.16",
"status": "affected"
},
{
"version": "7.0.17",
"status": "affected"
},
{
"version": "7.0.18",
"status": "affected"
},
{
"version": "7.0.19",
"status": "affected"
},
{
"version": "7.0.20",
"status": "affected"
},
{
"version": "7.0.21",
"status": "affected"
},
{
"version": "7.0.22",
"status": "affected"
},
{
"version": "7.0.23",
"status": "affected"
},
{
"version": "7.0.24",
"status": "affected"
},
{
"version": "7.0.25",
"status": "affected"
},
{
"version": "7.0.26",
"status": "affected"
},
{
"version": "7.0.27",
"status": "affected"
},
{
"version": "7.0.28",
"status": "affected"
},
{
"version": "7.0.29",
"status": "affected"
},
{
"version": "7.0.30",
"status": "affected"
},
{
"version": "7.0.31",
"status": "affected"
},
{
"version": "7.0.32",
"status": "affected"
},
{
"version": "7.0.33",
"status": "affected"
}
],
"modules": [
"User Profile Menu"
]
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo30 Dec 2022 12:15Current
4.8Medium risk
Vulners AI Score4.8
CVSS24
CVSS33.5 - 6.1
EPSS0.00069