Lucene search
GitHub Advisory DatabaseGHSA-735V-WX75-XMMMHistoryJan 27, 2022 - 6:27 p.m.
Cross-site Scripting in grav
2022-01-2718:27:56
CWE-79
GitHub Advisory Database
github.com
15
0.001 Low
EPSS
Percentile
21.0%
In grav prior to version 1.7.28, a low privilege user can create a page with arbitrary javascript by bypassing insufficent XSS filtering.
| CPE | Name | Operator | Version |
|---|---|---|---|
| getgrav/grav | lt | 1.7.28 |
Related
osv
osv
CVE-2022-0268
2022-01-25 11:15:08
Cross-site Scripting in grav
2022-01-27 18:27:56
cvelist
cvelist
CVE-2022-0268 Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-25 10:40:11
prion
prion
Cross site scripting
2022-01-25 11:15:00
cnvd
cnvd
Grav Cross-Site Scripting Vulnerability (CNVD-2022-07637)
2022-01-27 00:00:00
cve
cve
CVE-2022-0268
2022-01-25 11:15:00
veracode
veracode
Cross-site Scripting (XSS)
2022-01-26 03:05:36
huntr
huntr
Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-02 22:01:57