Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:53 p.m.18 views

CVE-2022-29168

Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering @mentions in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim...

9.6CVSS7.1AI score0.00796EPSS
Exploits0References1
CVE
CVE
added 2022/06/25 7:5 a.m.81 views

CVE-2022-29168

CVE-2022-29168 describes an XSS in Wire via insufficient escaping when rendering @mentions in the wire-webapp. When a user views a malicious message, arbitrary HTML/JavaScript can be executed in the victim’s context, potentially taking over the user account. Wire-desktop clients connected to a vu...

9.6CVSS6.8AI score0.00796EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/25 7:5 a.m.8 views

CVE-2022-29168 Cross Site Scripting in Wire Messages

Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering @mentions in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim...

9.6CVSS9.3AI score0.00796EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/25 7:5 a.m.43 views

CVE-2022-29168 Cross Site Scripting in Wire Messages

Wire is a secure messaging application. Wire is vulnerable to arbitrary HTML and Javascript execution via insufficient escaping when rendering @mentions in the wire-webapp. If a user receives and views a malicious message, arbitrary code is injected and executed in the context of the victim...

9.6CVSS9.5AI score0.00796EPSS
Exploits0References1
Rows per page
Query Builder