CVE-2022-23871

2022-02-0303:15:06

Google

osv.dev

cross-site scripting

gibbon cms

vulnerabilities

arbitrary web scripts

html

outcomes_addprocess.php

AI Score

Confidence

High

EPSS

0.001

Percentile

21.4%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the component outcomes_addProcess.php of Gibbon CMS v22.0.01 allow attackers to execute arbitrary web scripts or HTML via a crafted payload insterted into the name, category, description parameters.