CVE-2022-4930

🗓️ 06 Mar 2023 15:31:04Reported by VulDBType

Vulnerability in nuxsmin sysPass up to 3.2.4 allows remote cross site scripting (CVE-2022-4930)

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2022-4930	6 Mar 202318:12	–	circl
CNNVD	nuxsmin sysPass 跨站脚本漏洞	6 Mar 202300:00	–	cnnvd
Cvelist	CVE-2022-4930 nuxsmin sysPass URL cross site scripting	6 Mar 202315:31	–	cvelist
EUVD	EUVD-2022-52184	3 Oct 202520:07	–	euvd
NVD	CVE-2022-4930	6 Mar 202316:15	–	nvd
Prion	Cross site scripting	6 Mar 202316:15	–	prion
Positive Technologies	PT-2023-15917 · Nuxsmin · Syspass	6 Mar 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-4930	23 May 202500:31	–	redhatcve
Vulnrichment	CVE-2022-4930 nuxsmin sysPass URL cross site scripting	6 Mar 202315:31	–	vulnrichment

NVD

Vulners

Node

syspass syspassRange≤3.2.4

[
  {
    "vendor": "nuxsmin",
    "product": "sysPass",
    "versions": [
      {
        "version": "3.2.0",
        "status": "affected"
      },
      {
        "version": "3.2.1",
        "status": "affected"
      },
      {
        "version": "3.2.2",
        "status": "affected"
      },
      {
        "version": "3.2.3",
        "status": "affected"
      },
      {
        "version": "3.2.4",
        "status": "affected"
      }
    ],
    "modules": [
      "URL Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/nuxsmin/sysPass/commit/4da4d031732ecca67519851fd0c34597dbb8ee55
vuldb	www.vuldb.com/
github	www.github.com/nuxsmin/sysPass/releases/tag/3.2.5
github	www.github.com/nuxsmin/sysPass/pull/1832

21 Nov 2024 07:36Current

4.4Medium risk

Vulners AI Score4.4

CVSS 3.13.5 - 5.4

CVSS 24

CVSS 33.5

EPSS0.00167

SSVC

CWE-79