Lucene search
GoogleOSV:CVE-2022-23638HistoryFeb 14, 2022 - 9:15 p.m.
CVE-2022-23638
2022-02-1421:15:09
Google
osv.dev
5
php
library
cross-site scripting
EPSS
0.001
Percentile
27.5%
svg-sanitizer is a SVG/XML sanitizer written in PHP. A cross-site scripting vulnerability impacts all users of the svg-sanitizer library prior to version 0.15.0. This issue is fixed in version 0.15.0. There is currently no workaround available.
Related
openvas
openvas
TYPO3 SVG Sanitizer Vulnerability (TYPO3-PSA-2022-001)
2022-02-25 00:00:00
cve
cve
CVE-2022-23638
2022-02-14 21:15:09
typo3
typo3
Sanitization bypass in SVG Sanitizer
2022-02-22 00:00:00
prion
prion
Cross site scripting
2022-02-14 21:15:00
cvelist
cvelist
CVE-2022-23638 Cross-site Scripting in svg-sanitizer
2022-02-14 21:10:10
nessus
nessus
freebsd
freebsd
typo3 -- XSS vulnerability in svg-sanitize
2022-02-22 00:00:00
friendsofphp
friendsofphp
A cross-site scripting vulnerability
2022-02-15 01:54:00
A cross-site scripting vulnerability
2022-02-15 01:54:00
ubuntucve
ubuntucve
CVE-2022-23638
2022-02-14 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2022-02-15 07:00:19
github
github
Cross-site Scripting in enshrined/svg-sanitize
2022-02-14 22:54:18
osv
osv
Cross-site Scripting in enshrined/svg-sanitize
2022-02-14 22:54:18
nvd
nvd
CVE-2022-23638
2022-02-14 21:15:09