4 matches found
CVE-2022-3975
A vulnerability, which was classified as problematic, has been found in NukeViet CMS. Affected by this issue is the function filterAttr of the file vendor/vinades/nukeviet/Core/Request.php of the component Data URL Handler. The manipulation of the argument attrSubSet leads to cross site scripting...
CVE-2022-3975
A vulnerability, which was classified as problematic, has been found in NukeViet CMS. Affected by this issue is the function filterAttr of the file vendor/vinades/nukeviet/Core/Request.php of the component Data URL Handler. The manipulation of the argument attrSubSet leads to cross site scripting...
CVE-2022-3975
A vulnerability, which was classified as problematic, has been found in NukeViet CMS. Affected by this issue is the function filterAttr of the file vendor/vinades/nukeviet/Core/Request.php of the component Data URL Handler. The manipulation of the argument attrSubSet leads to cross site scripting...
CVE-2022-3975
NukeViet CMS vulnerability CVE-2022-3975 affects the Data URL Handler’s filterAttr in vendor/vinades/nukeviet/Core/Request.php. Manipulating attrSubSet enables cross-site scripting, with remote execution possible. Upgrading to version 4.5 fixes the issue (patch: 0b3197fad950bb3383e83039a8ee4c9509...