Lucene search
@huntrdevCVELIST:CVE-2022-1811HistoryMay 23, 2022 - 1:30 p.m.
CVE-2022-1811 Unrestricted Upload of File with Dangerous Type in publify/publify
2022-05-2313:30:12
CWE-434
@huntrdev
www.cve.org
2
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:L
0.001 Low
EPSS
Percentile
21.6%
Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9.
CNA Affected
[
{
"product": "publify/publify",
"vendor": "publify",
"versions": [
{
"lessThan": "9.2.9",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2022-1811
2022-05-23 16:16:06
Publify vulnerable to cross site scripting
2022-05-24 00:01:35
BIT-publify-2022-1811
2024-03-06 11:03:21
veracode
veracode
Cross-site Scripting (XSS)
2022-05-24 03:08:55
cnvd
cnvd
Publify arbitrary file upload vulnerability
2022-05-25 00:00:00
prion
prion
Unrestricted file upload
2022-05-23 16:16:00
nvd
nvd
CVE-2022-1811
2022-05-23 16:16:06
huntr
huntr
Bypass Restriction and File Upload Leads to XSS Stored - TXT to HTML
2022-05-19 23:52:38
cve
cve
CVE-2022-1811
2022-05-23 16:16:06
github
github
Publify vulnerable to cross site scripting
2022-05-24 00:01:35
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:L
0.001 Low
EPSS
Percentile
21.6%
Related for CVELIST:CVE-2022-1811