Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJpcertCVELIST:CVE-2022-38080
HistoryAug 24, 2022 - 8:41 a.m.

CVE-2022-38080

2022-08-2408:41:07
jpcert
www.cve.org

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.7%

JSON

Reflected cross-site scripting vulnerability in Exment ((PHP8) exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier, (PHP7) exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier) allows a remote authenticated attacker to inject an arbitrary script.

CNA Affected

[
  {
    "product": "Exment",
    "vendor": "Kajitori Co.,Ltd",
    "versions": [
      {
        "status": "affected",
        "version": "(PHP8) exceedone/exment v5.0.2 and earlier and exceedone/laravel-admin v3.0.0 and earlier,  (PHP7) exceedone/exment v4.4.2 and earlier and exceedone/laravel-admin v2.2.2 and earlier"
      }
    ]
  }
]

Related

github 1
osv 2
nvd 1
cve 1
prion 1
jvn 1
github
github
exceedone/exment and exceedone/laravel-admin Cross-site Scripting vulnerability
2022-08-25 00:00:29
osv
osv
exceedone/exment and exceedone/laravel-admin Cross-site Scripting vulnerability
2022-08-25 00:00:29
CVE-2022-38080
2022-08-24 09:15:08
nvd
nvd
CVE-2022-38080
2022-08-24 09:15:08
cve
cve
CVE-2022-38080
2022-08-24 09:15:08
prion
prion
Cross site scripting
2022-08-24 09:15:00
jvn
jvn
JVN#46239102: Multiple vulnerabilities in Exment
2022-08-24 00:00:00

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.7%

JSON
Related for CVELIST:CVE-2022-38080
github1osv2nvd1cve1prion1jvn1