Lucene search
Veracode Vulnerability DatabaseVERACODE:35920HistoryJun 09, 2022 - 6:55 a.m.
Stored Cross-Site Scripting (XSS)
2022-06-0906:55:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
0.001 Low
EPSS
Percentile
21.6%
francoisjacquet/rosariosis is vulnerable to stored cross-site scripting (XSS) attacks. The PreparePHP_SELF function incorrectly neutralizes user-controllable inputs allowing a remote attacker to inject and execute harmful javascript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| francoisjacquet/rosariosis | le | v8.9.6 | |
| francoisjacquet/rosariosis | le | v8.9.6 |
Related
cve
cve
CVE-2022-1997
2022-06-08 14:15:07
nvd
nvd
CVE-2022-1997
2022-06-08 14:15:07
github
github
Cross-site Scripting in RosarioSIS
2022-06-09 00:00:24
huntr
huntr
Bypass filter - Stored XSS in Resources
2022-06-03 11:30:20
osv
osv
Cross-site Scripting in RosarioSIS
2022-06-09 00:00:24
CVE-2022-1997
2022-06-08 14:15:07
cvelist
cvelist
prion
prion
Cross site scripting
2022-06-08 14:15:00