Lucene search
Veracode Vulnerability DatabaseVERACODE:36059HistoryJun 20, 2022 - 12:10 p.m.
Cross-Site Scripting (XSS)
2022-06-2012:10:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
31.5%
brotkrueml/typo3-matomo-integration is vulnerable to cross-site scripting. The vulnerability exists in convertStringValue function in MatomoMethodCall.php because the content from PSR-14 events are not properly escaped which allows an attackers to inject and execute arbitrary javascript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| brotkrueml/typo3-matomo-integration | le | v1.3.1 | |
| brotkrueml/typo3-matomo-integration | le | v1.3.1 |
Related
github
github
brotkrueml/typo3-matomo-integration vulnerable to Cross-Site Scripting
2022-06-17 21:46:28
cvelist
cvelist
CVE-2022-33156
2022-07-12 22:45:07
cve
cve
CVE-2022-33156
2022-07-12 23:15:12
prion
prion
Cross site scripting
2022-07-12 23:15:00
osv
osv
BIT-matomo-2022-33156
2024-03-06 10:55:36
brotkrueml/typo3-matomo-integration vulnerable to Cross-Site Scripting
2022-06-17 21:46:28
nvd
nvd
CVE-2022-33156
2022-07-12 23:15:12
friendsofphp
friendsofphp
Cross-Site Scripting
2022-06-13 13:40:15