Lucene search
Veracode Vulnerability DatabaseVERACODE:35617HistoryMay 20, 2022 - 3:46 a.m.
Cross-site Scripting (XSS)
2022-05-2003:46:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
0.001 Low
EPSS
Percentile
30.2%
para-core is vulnerable to cross-site scripting. The vulnerability exists because the compileMustache function of Utils.java does not properly escape the HTML when compiling mustache templates, allowing an attacker to inject and execute malicious javascript.
Related
prion
prion
Cross site scripting
2022-05-18 15:15:00
nvd
nvd
CVE-2022-1782
2022-05-18 15:15:08
github
github
Cross-site Scripting in com.erudika:para-core
2022-05-19 00:00:30
huntr
huntr
Html Injection lead to cross site scripting
2022-05-14 12:55:25
osv
osv
Cross-site Scripting in com.erudika:para-core
2022-05-19 00:00:30
CVE-2022-1782
2022-05-18 15:15:08
cnvd
cnvd
Erudika Para Cross-Site Scripting Vulnerability
2022-05-20 00:00:00
cvelist
cvelist
CVE-2022-1782 Cross-site Scripting (XSS) - Generic in erudika/para
2022-05-18 09:00:14
cve
cve
CVE-2022-1782
2022-05-18 15:15:08