Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:11 p.m.5 views

CVE-2022-3255

If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...

6.8CVSS6.4AI score0.00658EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/09/21 12:0 p.m.4 views

CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore

If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...

6.8CVSS4.9AI score0.00658EPSS
Exploits1References2
CVE
CVE
added 2022/09/21 12:0 p.m.78 views

CVE-2022-3255

CVE-2022-3255 is a cross-site scripting (XSS) issue affecting Pimcore. The vulnerability arises when an attacker can control a script executed in the victim’s browser, enabling the attacker to perform actions the user can, view and modify user data, and initiate interactions with other users that...

6.8CVSS5AI score0.00658EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/09/21 12:0 p.m.7 views

CVE-2022-3255 Cross-site Scripting (XSS) - Reflected in pimcore/pimcore

If an attacker can control a script that is executed in the victim's browser, then they can typically fully compromise that user. Amongst other things, the attacker can: Perform any action within the application that the user can perform. View any information that the user is able to view. Modify...

6.8CVSS5.7AI score0.00658EPSS
Exploits1References4
Rows per page
Query Builder