Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 8:34 p.m.7 views

CVE-2022-31094

ScratchTools is a web extension designed to make interacting with the Scratch programming language community Scratching easier. In affected versions anybody who uses the Recently Viewed Projects feature is vulnerable to having their account taken over if they view a project that tries to. The iss...

7.1CVSS6.5AI score0.00852EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/27 9:5 p.m.27 views

CVE-2022-31094 Cross site scripting vulnerability in ScratchTools

ScratchTools is a web extension designed to make interacting with the Scratch programming language community Scratching easier. In affected versions anybody who uses the Recently Viewed Projects feature is vulnerable to having their account taken over if they view a project that tries to. The iss...

7.1CVSS6.9AI score0.00852EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/06/27 9:5 p.m.5 views

CVE-2022-31094 Cross site scripting vulnerability in ScratchTools

ScratchTools is a web extension designed to make interacting with the Scratch programming language community Scratching easier. In affected versions anybody who uses the Recently Viewed Projects feature is vulnerable to having their account taken over if they view a project that tries to. The iss...

7.1CVSS6.7AI score0.00852EPSS
Exploits0References3
CVE
CVE
added 2022/06/27 9:5 p.m.78 views

CVE-2022-31094

ScratchTools (a web extension for Scratch) is affected by a cross-site scripting vulnerability in the Recently Viewed Projects feature. If a user views a project whose title contains JavaScript, the title rendering can execute injected code, potentially hijacking the user’s account. The issue is ...

7.1CVSS6.2AI score0.00852EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder