Lucene search

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

🗓️ 02 Mar 2022 00:00:00Reported by https://gitlab.com/gitlab-org/security-products/gemnasium-dbType

Improper Neutralization of Input During Web Page Generation in Cipi 3.1.1

Reporter	Title	Published	Views	Family All 8
OSV	CVE-2022-26332	1 Mar 202201:15	–	osv
OSV	Cross-site Scripting in Cipi	2 Mar 202200:00	–	osv
Github Security Blog	Cross-site Scripting in Cipi	2 Mar 202200:00	–	github
Veracode	Stored Cross-site Scripting (XSS)	2 Mar 202207:26	–	veracode
Prion	Cross site scripting	1 Mar 202201:15	–	prion
Cvelist	CVE-2022-26332	1 Mar 202200:46	–	cvelist
NVD	CVE-2022-26332	1 Mar 202201:15	–	nvd
CVE	CVE-2022-26332	1 Mar 202201:15	–	cve

Vulners

Node

packagist cipiRange≤3.1.15

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-26332
github	www.github.com/andreapollastri/cipi/releases
exploit-db	www.exploit-db.com/exploits/50788
github	www.github.com/advisories/GHSA-vpmw-77vm-4mjg

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Mar 2022 00:00Current

3.2Low risk

Vulners AI Score3.2

CVSS23.5

CVSS35.4

EPSS0.00267