CVE-2022-46180

🗓️ 04 Jan 2023 17:08:15Reported by [email protected]Type

Discourse Mermaid allows HTML injection in version 1.0.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
cve	CVE-2022-46180	4 Jan 202317:15	–	cve
prion	Design/Logic Flaw	4 Jan 202317:15	–	prion
osv	CVE-2022-46180	4 Jan 202317:15	–	osv
cvelist	CVE-2022-46180 Arbitrary HTML injection in discourse-mermaid-theme-component	4 Jan 202316:44	–	cvelist
vulnrichment	CVE-2022-46180 Arbitrary HTML injection in discourse-mermaid-theme-component	4 Jan 202316:44	–	vulnrichment

Nvd

Node

discourse mermaidRange1.0.0–1.1.0

Source	Link
github	www.github.com/discourse/discourse-mermaid-theme-component/commit/c10bc4a08bf865cee20e5d5dffba535762813f0f
github	www.github.com/discourse/discourse-mermaid-theme-component/security/advisories/GHSA-8437-hgcm-p3q3
github	www.github.com/discourse/discourse-mermaid-theme-component/pull/14

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Jan 2023 17:15Current

5.2Medium risk

Vulners AI Score5.2

CVSS35.4

EPSS0.00095