Lucene search
GoogleOSV:CVE-2022-48345HistoryFeb 24, 2023 - 6:15 a.m.
CVE-2022-48345
2023-02-2406:15:11
Google
osv.dev
2
sanitize-url xss software
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.0%
sanitize-url (aka @braintree/sanitize-url) before 6.0.2 allows XSS via HTML entities.
Related
nessus
nessus
RHEL 9 : sanitize-url (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 8 : sanitize-url (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 9 : grafana (Unpatched Vulnerability)
2024-06-03 00:00:00
cve
cve
CVE-2022-48345
2023-02-24 06:15:11
debiancve
debiancve
CVE-2022-48345
2023-02-24 06:15:11
ubuntucve
ubuntucve
CVE-2022-48345
2023-02-24 00:00:00
cvelist
cvelist
CVE-2022-48345
2023-02-24 00:00:00
github
github
@braintree/sanitize-url Cross-site Scripting vulnerability
2023-02-24 06:30:16
redhatcve
redhatcve
CVE-2022-48345
2023-03-01 05:29:45
veracode
veracode
Cross-site Scripting (XSS)
2023-03-01 02:54:33
prion
prion
Design/Logic Flaw
2023-02-24 06:15:00
ibm
ibm
osv
osv
@braintree/sanitize-url Cross-site Scripting vulnerability
2023-02-24 06:30:16
nvd
nvd
CVE-2022-48345
2023-02-24 06:15:11
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
30.0%
Related for OSV:CVE-2022-48345