Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:58 a.m.11 views

CVE-2022-31136

Bookwyrm is an open source social reading and reviewing program. Versions of Bookwyrm prior to 0.4.1 did not properly sanitize html being rendered to users. Unprivileged users are able to inject scripts into user profiles, book descriptions, and statuses. These vulnerabilities may be exploited as...

6.3CVSS6.3AI score0.0054EPSS
Exploits0References1
Circl
Circl
added 2022/07/07 10:15 p.m.6 views

CVE-2022-31136

creationtimestamp| type| source ---|---|--- 2022-07-07 22:15:31+00:00| seen| https://t.me/cibsecurity/45763...

6.3CVSS6AI score0.0054EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/07/07 5:55 p.m.8 views

CVE-2022-31136 Cross-site Scripting in BookWyrm

Bookwyrm is an open source social reading and reviewing program. Versions of Bookwyrm prior to 0.4.1 did not properly sanitize html being rendered to users. Unprivileged users are able to inject scripts into user profiles, book descriptions, and statuses. These vulnerabilities may be exploited as...

6.3CVSS6.4AI score0.0054EPSS
Exploits0References2
CVE
CVE
added 2022/07/07 5:55 p.m.66 views

CVE-2022-31136

Bookwyrm (an open source social reading app) is affected by CVE-2022-31136 due to improper sanitization of HTML rendered to users in profiles, book descriptions, and statuses before version 0.4.1. The root cause is inadequate HTML sanitization which enables cross-site scripting (XSS) by unprivile...

6.3CVSS6.4AI score0.0054EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/07 5:55 p.m.47 views

CVE-2022-31136 Cross-site Scripting in BookWyrm

Bookwyrm is an open source social reading and reviewing program. Versions of Bookwyrm prior to 0.4.1 did not properly sanitize html being rendered to users. Unprivileged users are able to inject scripts into user profiles, book descriptions, and statuses. These vulnerabilities may be exploited as...

6.3CVSS6.5AI score0.0054EPSS
Exploits0References2
Rows per page
Query Builder