CVE-2022-42991 in Simple Online Public Access Catalogالمعلومات

الملخص

بحسب MITRE • 27/10/2022

A stored cross-site scripting (XSS) vulnerability in Simple Online Public Access Catalog v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit Account Full Name field.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

17/10/2022

إفشاء

27/10/2022

الاعتدال

تمت الموافقة

إدخال

VDB-212370

استغلال

تحميل

EPSS

0.00447

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!