Lucene search
Veracode Vulnerability DatabaseVERACODE:34755HistoryMar 21, 2022 - 5:18 a.m.
Cross-site Scripting (XSS)
2022-03-2105:18:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
0.001 Low
EPSS
Percentile
21.6%
showdoc/showdoc is vulnerable to cross-site scripting. An attacker can inject and execute malicious javascript through the .properties files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| showdoc/showdoc | le | v2.10.3 | |
| showdoc/showdoc | le | v2.8.16 | |
| showdoc/showdoc | le | v2.9.15 | |
| showdoc/showdoc | le | v2.10.3 | |
| showdoc/showdoc | le | v2.8.16 | |
| showdoc/showdoc | le | v2.9.15 |
Related
cve
cve
CVE-2022-0960
2022-03-14 15:15:10
osv
osv
Cross-site Scripting in showdoc/showdoc
2022-03-15 00:00:55
CVE-2022-0960
2022-03-14 15:15:10
github
github
Cross-site Scripting in showdoc/showdoc
2022-03-15 00:00:55
prion
prion
Cross site scripting
2022-03-14 15:15:00
cvelist
cvelist
CVE-2022-0960 Stored XSS viva .properties file upload in star7th/showdoc
2022-03-14 14:45:13
nvd
nvd
CVE-2022-0960
2022-03-14 15:15:10
huntr
huntr
Stored XSS viva .properties file upload
2022-03-14 14:24:13
cnvd
cnvd
showdoc .properties file upload vulnerability
2022-03-16 00:00:00