CVE-2023-22475

🗓️ 06 Jan 2023 15:09:15Reported by [email protected]Type

Canarytokens open source tool facilitates network activity tracking & actions. XSS vulnerability in history page allows attackers to execute JavaScript, leading to potential Canarytoken deletion or information exposure

Reporter	Title	Published	Views	Family All 10
CVE	CVE-2023-22475	6 Jan 202315:15	–	cve
CVE	CVE-2022-31113	1 Jul 202217:15	–	cve
Cvelist	CVE-2023-22475 Cross-Site Scripting in Canarytoken history	6 Jan 202314:31	–	cvelist
Cvelist	CVE-2022-31113 Cross-Site Scripting in Canarytoken history	1 Jul 202216:30	–	cvelist
OSV	CVE-2023-22475	6 Jan 202315:15	–	osv
OSV	CVE-2022-31113	1 Jul 202217:15	–	osv
Vulnrichment	CVE-2023-22475 Cross-Site Scripting in Canarytoken history	6 Jan 202314:31	–	vulnrichment
Prion	Cross site scripting	6 Jan 202315:15	–	prion
Prion	Cross site scripting	1 Jul 202217:15	–	prion
NVD	CVE-2022-31113	1 Jul 202217:15	–	nvd

Nvd

Node

thinkst canarytokensRange<2023-01-06

Source	Link
github	www.github.com/thinkst/canarytokens/security/advisories/GHSA-5675-3424-hpqr
github	www.github.com/thinkst/canarytokens/security/advisories/GHSA-3h2c-3fgr-74vh
github	www.github.com/thinkst/canarytokens/commit/fb612906f2217bbb8863199694891d16e20bad3e

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Jan 2023 15:15Current

6Medium risk

Vulners AI Score6

CVSS36.1

EPSS0.00071

CWE-79