Lucene search
PRIOn knowledge basePRION:CVE-2022-25847HistoryJan 26, 2023 - 9:15 p.m.
Cross site scripting
2023-01-2621:15:00
PRIOn knowledge base
www.prio-n.com
3
cross site scripting
vulnerability
serve-lite
0.001 Low
EPSS
Percentile
25.3%
All versions of the package serve-lite are vulnerable to Cross-site Scripting (XSS) because when it detects a request to a directory, it renders a file listing of all of its contents with links that include the actual file names without any sanitization or output encoding.
Related
cve
cve
CVE-2022-25847
2023-01-26 21:15:30
cvelist
cvelist
CVE-2022-25847
2023-01-25 05:00:01
nvd
nvd
CVE-2022-25847
2023-01-26 21:15:30
osv
osv
Cross-site Scripting (XSS) in serve-lite
2023-01-26 21:30:25
veracode
veracode
Cross-site Scripting (XSS)
2023-02-03 02:23:48
github
github
Cross-site Scripting (XSS) in serve-lite
2023-01-26 21:30:25