Lucene search
MitreCVELIST:CVE-2022-40487HistoryOct 31, 2022 - 12:00 a.m.
CVE-2022-40487
2022-10-3100:00:00
mitre
www.cve.org
1
processwire
v3.0.200
cross-site scripting
search users
search pages
arbitrary web scripts
html
injection
crafted payload
0.001 Low
EPSS
Percentile
33.5%
ProcessWire v3.0.200 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities via the Search Users and Search Pages function. These vulnerabilities allow attackers to execute arbitrary web scripts or HTML via injection of a crafted payload.
Related
veracode
veracode
Cross-Site Scripting (XSS)
2022-11-01 05:57:14
github
github
ProcessWire vulnerable to Cross-site Scripting
2022-10-31 19:00:37
cve
cve
CVE-2022-40487
2022-10-31 12:15:10
nvd
nvd
CVE-2022-40487
2022-10-31 12:15:10
osv
osv
ProcessWire vulnerable to Cross-site Scripting
2022-10-31 19:00:37
CVE-2022-40487
2022-10-31 12:15:10
prion
prion
Cross site scripting
2022-10-31 12:15:00