Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-PJPC-87MP-4332
HistoryMay 25, 2022 - 10:36 p.m.

Cross-site Scripting vulnerability in Mautic's tracking pixel functionality

2022-05-2522:36:33
Google
osv.dev
9

0.004 Low

EPSS

Percentile

72.1%

JSON

Impact

Mautic allows you to track open rates by using tracking pixels.
The tracking information is stored together with extra metadata of the tracking request.

The output isnโ€™t sufficiently filtered when showing the metadata of the tracking information, which may lead to a vulnerable situation.

Patches

Please upgrade to 4.3.0

Workarounds

None.

References

  • Internally tracked under MST-38

For more information

If you have any questions or comments about this advisory:

Related

nvd 1
cvelist 1
osv 1
github 1
cve 1
cnvd 1
checkpoint_advisories 1
veracode 1
prion 1
intel 1
nvd
nvd
CVE-2022-25772
2022-06-20 13:15:07
cvelist
cvelist
CVE-2022-25772
2022-06-20 00:00:00
osv
osv
CVE-2022-25772
2022-06-20 13:15:07
github
github
Cross-site Scripting vulnerability in Mautic's tracking pixel functionality
2022-05-25 22:36:33
cve
cve
CVE-2022-25772
2022-06-20 13:15:07
cnvd
cnvd
Mautic Cross-Site Scripting Vulnerability
2022-06-22 00:00:00
checkpoint_advisories
checkpoint_advisories
Acquia Mautic Cross-Site Scripting (CVE-2022-25772)
2022-10-31 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2022-05-26 06:34:14
prion
prion
Cross site scripting
2022-06-20 13:15:00
intel
intel
Intelยฎ Retail Edge Mobile Appย Advisory
2023-05-09 00:00:00

0.004 Low

EPSS

Percentile

72.1%

JSON
Related for OSV:GHSA-PJPC-87MP-4332
nvd1cvelist1osv1github1cve1cnvd1checkpoint_advisories1veracode1prion1intel1