Lucene search
Veracode Vulnerability DatabaseVERACODE:37359HistorySep 30, 2022 - 1:30 p.m.
Cross-Site Scripting (XSS)
2022-09-3013:30:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
feehi/feehicms
cross-site scripting
vulnerability
picture comments
javascript
crafted payload
0.001 Low
EPSS
Percentile
25.0%
feehi/feehicms is vulnerable to cross-site scripting. The vulnerability exists when sending picture comments in single page module which allows an attacker to inject and execute arbitrary javascript via a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| feehi/feehicms | eq | 2.0.1.1 | |
| feehi/feehicms | eq | 2.0.1.1 |
Related
cve
cve
CVE-2022-40408
2022-09-29 14:15:10
cvelist
cvelist
CVE-2022-40408
2022-09-29 13:33:54
nvd
nvd
CVE-2022-40408
2022-09-29 14:15:10
osv
osv
CVE-2022-40408
2022-09-29 14:15:10
FeehiCMS vulnerable to Cross-Site scripting via crafted payload
2022-09-30 00:00:43
cnvd
cnvd
FeehiCMS Cross-Site Scripting Vulnerability
2022-09-30 00:00:00
prion
prion
Cross site scripting
2022-09-29 14:15:00
github
github
FeehiCMS vulnerable to Cross-Site scripting via crafted payload
2022-09-30 00:00:43