Lucene search
Veracode Vulnerability DatabaseVERACODE:34826HistoryMar 25, 2022 - 6:06 a.m.
Cross-site Scripting (XSS)
2022-03-2506:06:30
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
forkcms
cross-site scripting
xss
remote attacker
malicious javascript
lack of validations
new module
software
EPSS
0.001
Percentile
21.4%
forkcms/forkcms is vulnerable to cross-site scripting(XSS) attacks. A remote attacker is able to inject and execute malicious javascript via the description of a new module due to the lack of validations.
References
Related
github
github
Cross-site Scripting in Fork CMS
2022-03-25 00:00:34
prion
prion
Cross site scripting
2022-03-24 11:15:00
nvd
nvd
CVE-2022-0145
2022-03-24 11:15:08
huntr
huntr
Cross-site Scripting (XSS) - Stored in forkcms/forkcms
2021-10-25 20:56:50
cve
cve
CVE-2022-0145
2022-03-24 11:15:08
cvelist
cvelist
CVE-2022-0145 Cross-site Scripting (XSS) - Stored in forkcms/forkcms
2022-03-24 10:35:10
osv
osv
Cross-site Scripting in Fork CMS
2022-03-25 00:00:34
CVE-2022-0145
2022-03-24 11:15:00