Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:4 a.m.6 views

CVE-2022-37429

Silverstripe silverstripe/framework through 4.11 allows XSS issue 1 of 2 via JavaScript payload to the href attribute of a link by splitting a javascript URL with white space characters...

5.4CVSS5.9AI score0.00473EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/23 12:0 a.m.14 views

CVE-2022-37429

Silverstripe silverstripe/framework through 4.11 allows XSS issue 1 of 2 via JavaScript payload to the href attribute of a link by splitting a javascript URL with white space characters...

5.4AI score0.00473EPSS
Exploits0References4
CVE
CVE
added 2022/11/23 12:0 a.m.88 views

CVE-2022-37429

Concrete details for CVE-2022-37429: SilverStripe framework (silverstripe/framework) versions up to and including 4.11 are affected by a cross-site scripting (XSS) vulnerability. The root cause is improper handling of user-supplied data in link href attributes, allowing a JavaScript payload to be...

5.4CVSS5.1AI score0.00473EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/11/23 12:0 a.m.20 views

CVE-2022-37429

Silverstripe silverstripe/framework through 4.11 allows XSS issue 1 of 2 via JavaScript payload to the href attribute of a link by splitting a javascript URL with white space characters...

5.4CVSS5.3AI score0.00473EPSS
Exploits0References6
Friends Of PHP
Friends Of PHP
added 2021/11/21 12:0 a.m.19 views

CVE-2022-37429 - Stored XSS using HTMLEditor

More info at https://www.silverstripe.org/download/security-releases/cve-2022-37429...

5.4CVSS7.2AI score0.00473EPSS
Exploits0Affected Software1
Rows per page
Query Builder