Lucene search
Veracode Vulnerability DatabaseVERACODE:33891HistoryJan 26, 2022 - 3:05 a.m.
Cross-site Scripting (XSS)
2022-01-2603:05:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
21.6%
getgrav/grav is vulnerable to cross-site scripting (XSS) attacks. Insufficient checks in detectXss allow remote attackers to inject and execute arbitrary javascript code in the victim’s browser.
| CPE | Name | Operator | Version |
|---|---|---|---|
| getgrav/grav | le | 1.7.27.1 | |
| getgrav/grav | le | 1.7.27.1 |
Related
github
github
Cross-site Scripting in grav
2022-01-27 18:27:56
osv
osv
CVE-2022-0268
2022-01-25 11:15:08
Cross-site Scripting in grav
2022-01-27 18:27:56
cvelist
cvelist
CVE-2022-0268 Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-25 10:40:11
cnvd
cnvd
Grav Cross-Site Scripting Vulnerability (CNVD-2022-07637)
2022-01-27 00:00:00
prion
prion
Cross site scripting
2022-01-25 11:15:00
nvd
nvd
CVE-2022-0268
2022-01-25 11:15:08
cve
cve
CVE-2022-0268
2022-01-25 11:15:08
huntr
huntr
Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-02 22:01:57