CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Haraj 3.7 - Cross-Site Scripting

Haraj 3.7 contains a cross-site scripting vulnerability in the User Upgrade Form. An attacker can inject malicious script and thus steal authentication credentials and launch other attacks. id: CVE-2022-31299 info: name: Haraj 3.7 - Cross-Site Scripting author: edoardottt severity: medium...

6.1CVSS6.2AI score0.04731EPSS

Exploits2References5

ATTACKERKB•added 2022/06/16 10:15 p.m.•2 views

CVE-2022-31299

Haraj v3.7 was discovered to contain a reflected cross-site scripting XSS vulnerability in the User Upgrade Form...

6.1CVSS6.2AI score0.04731EPSS

Exploits2References5

OSV•added 2022/06/16 10:15 p.m.•5 views

CVE-2022-31299

Haraj v3.7 was discovered to contain a reflected cross-site scripting XSS vulnerability in the User Upgrade Form...

6.1CVSS6.3AI score0.04731EPSS

Exploits2References3

CVE•added 2022/06/16 9:22 p.m.•104 views

CVE-2022-31299

Haraj 3.7 contains a reflected cross-site scripting (XSS) vulnerability in the User Upgrade Form. The NVD/Nuclei entries describe a reflected XSS that could allow an attacker to execute malicious scripts in a victim’s browser, potentially enabling credential theft and session-related attacks. An ...

6.1CVSS6AI score0.04731EPSS

Exploits2References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by