Lucene search

K

[email protected]NVD:CVE-2022-25038

HistoryMay 31, 2024 - 4:15 p.m.

CVE-2022-25038

2024-05-3116:15:09

[email protected]

web.nvd.nist.gov

nvd cve-2022-25038

cross-site scripting

video upload function

6 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

wanEditor v4.7.11 was discovered to contain a cross-site scripting (XSS) vulnerability via the video upload function.

References

gist.github.com/Mdxjj/800f05f10a98591aa2cf3558f53f088f

github.com/wangeditor-team/wangEditor/issues/3872

6 Medium

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

Related for NVD:CVE-2022-25038